Ready to take your cybersecurity career to the next level? We’re looking for a Security Operations Engineer II who thrives on solving complex security challenges and protecting critical infrastructure from real-world threats. If you love threat hunting, incident response, and hardening systems to perfection, this role is for you.

What You’ll Do

• Monitor, detect, analyze, and respond to security threats in real time.
• Lead incident response efforts—from containment to recovery.
• Hunt for threats, analyze logs, and fine‑tune detection rules.
• Perform forensic investigations and reconstruct attack paths.
• Harden servers, workstations, and network infrastructure using CIS, STIGs, and best practices.
• Manage and optimize firewalls (Palo Alto, Fortinet, SonicWall), IDS/IPS, SIEM, and EDR tools.
• Drive vulnerability management and partner with teams to remediate risks.
• Create clear documentation, playbooks, and security reports.

What You Bring

• 5+ years Windows/Linux admin experience + 3+ years in security operations/IR/forensics.
• Deep knowledge of OS internals, firewalls, network security, and security frameworks.
• Hands-on experience with SIEM, EDR, IDS/IPS, and vulnerability scanners.
• Strong analytical, communication, and documentation skills.
• Ability to stay calm and effective during high-severity incidents.
• Passion for continuous learning and staying ahead of emerging threats.
• Experience with MSP/MSSP environments a plus; SonicWall experience preferred.

Additional certifications (preferred)

Security+, PenTest+, (ISC)² Associate, SSCP

Other Details

Rotational on-call and occasional off-hours support required.