Source Job

Romania

  • Act as the first responder for security alerts, triaging detection signals and escalating appropriately.
  • Handle customer-facing security operations cases including account recovery and access disputes.
  • Support incident response activities on an on-call rotation and improve operational documentation.

Security Operations Incident Response SSO Identity Management

20 jobs similar to Security Operations Engineer

Jobs ranked by similarity.

Global

  • Act as first responder for security alerts and triage severity.
  • Own customer security tickets including account recovery and MFA reset.
  • Maintain runbooks and improve escalation processes, communicating clearly across teams.

Supabase is the Postgres development platform, providing a complete backend solution including Database, Auth, and Storage. With over 280 team members across 55+ countries, we are a globally distributed, open-source-first company that values async communication and developer-friendly tools.

Netherlands

  • Design, implement, and optimize security monitoring, incident response, and detection capabilities across modern cloud and infrastructure ecosystems.
  • Build and maintain SIEM and log management capabilities, ensuring centralized log collection, normalization, and retention policies.
  • Automate operational security processes such as alert enrichment, incident notifications, and response orchestration.

Jobgether is an AI-powered job matching platform that connects candidates with hiring companies. They operate as a partner company managing applications and next steps, fostering a collaborative, transparent, and innovation-driven culture with a focus on professional growth and well-being.

US Unlimited PTO 12w maternity 12w paternity

  • Monitor logs, alerts, and telemetry to detect threats across infrastructure and cloud environments.
  • Perform in-depth security analysis and investigations to assess risk and identify root causes.
  • Coordinate and execute incident response efforts including containment, mitigation, and recovery.

Binance.US is a licensed and regulated U.S. crypto platform providing secure access to over 190 cryptocurrencies. As a remote-first team, we innovate to bridge traditional finance and Web3, helping bring financial freedom within reach for all.

$54,400–$120,750/yr
US

  • Investigate security alerts using tools such as CrowdStrike Falcon Suite and Microsoft Sentinel to determine scope and impact.
  • Support incident response activities, including containment, remediation, and post-incident documentation.
  • Collaborate with cross-functional teams to improve detection quality, workflows, and response readiness.

Commvault is the gold standard in cyber resilience, empowering customers to uncover, take action, and rapidly recover from cyberattacks. For over 25 years, more than 100,000 organizations and a vast partner ecosystem have relied on Commvault to reduce risks and improve governance.

$77,000–$82,000/yr
US

  • Monitor security alerts and assist in triaging suspicious activity using SIEM tools.
  • Collaborate with senior analysts to investigate potential threats and support incident response efforts.
  • Participate in threat hunting and vulnerability review exercises to identify and mitigate risks.

HealthEdge provides software solutions for the healthcare industry. They have a Center of Excellence structure with experienced security professionals, fostering a collaborative and growth-oriented culture.

United States

  • Lead the team responsible for detecting, investigating, responding to, and learning from security events
  • Manage and coach a team of engineers while remaining close to technical work such as detection design, alert tuning, and incident response
  • Manage relationships with security operations vendors and work closely with Security, Engineering, IT, and Compliance to protect patient and provider data

Rula is a remote-first company dedicated to making mental healthcare work for everyone. We believe mental health is as important as physical health and aim to create a world where it is embraced as an integral part of well-being.

US APAC EU LATAM

  • Own day-to-day IT operations and end user services across a globally distributed workforce, delivering exceptional support and managing hardware lifecycle.
  • Administer identity platforms including Google Workspace, AWS IAM, and SSO, implementing least-privilege access models and performing periodic access reviews.
  • Partner with Security, Compliance, and Legal to maintain secure operations aligned with SOC 2, ISO 27001, and PCI DSS, while building scalable processes from the ground up.

Hamsa is building the operating system for global finance through an AI-enabled Unified Ledger that connects the world's largest financial institutions. With $400B on platform in 2025 and backing from top-tier investors, our global team operates across the US, APAC, EU, and LATAM, scaling rapidly to reshape the financial system.

$115,000–$145,000/yr

  • Manage security and IT service desk tickets, access controls, and user provisioning.
  • Administer Atlassian cloud products, endpoint protection, and SOC/SIEM alerts.
  • Document processes, support compliance, and maintain security best practices.

Bitwarden is the trusted identity security leader for millions of users worldwide, empowering enterprises, developers, and individuals to securely manage and share sensitive information anywhere. The company is headquartered in Santa Barbara, California, and operates as a fully remote team with a collaborative culture.

$135,481–$182,160/yr
US

  • Monitor security events and provide technical analysis on alerts.
  • Lead information security incidents and employee investigations, developing response strategies.
  • Deliver security guidance and coordinate building services to support security operations.

Samsara is the pioneer of the Connected Operations Cloud, helping organizations that depend on physical operations harness IoT data to improve safety, efficiency, and sustainability. As a recently public company with a culture that encourages rapid career development, they support a flexible, employee-led remote model.

Continental US 3w PTO

  • Monitor and triage alerts from security tools such as SIEM, EDR/XDR, firewalls, and cloud security platforms.
  • Conduct initial investigation and documentation of potential security incidents and escalate as needed.
  • Support identity and access management tasks, including user provisioning, access reviews, and MFA/SSO support.

Make-A-Wish grants life-changing wishes for eligible children. As the world's largest wish-granting organization, it fosters a community-oriented environment and warmly embraces wish families, volunteers, and colleagues.

Netherlands 6w PTO

  • Design, implement, and manage privileged access controls including Privileged Identity Management (PIM) and just-in-time (JIT) access.
  • Lead access review and certification processes, ensuring remediation actions are completed and access remains aligned with least-privilege principles.
  • Manage the lifecycle of service accounts, machine identities, secrets, API keys, and credentials, including rotation, monitoring, and decommissioning.

This position is listed on behalf of a partner company, who manages all applications and next steps. The partner is looking for an Identity & PAM Security Engineer based in Netherlands. The role sits at the core of enterprise security, focusing on how identities are governed, accessed, and protected across critical systems and infrastructure.

US 4w PTO

  • Work cross-functionally to design, build, and operate solutions that automate and improve security capabilities.
  • Lead incident response efforts, analyze security trends, and refine security documentation like policies and standards.
  • Mentor junior engineers and coach team members to drive security outcomes across the organization.

Aledade is a public benefit corporation that empowers independent primary care practices through value-based care, helping them deliver better patient outcomes while thriving financially. Founded in 2014, the company has grown to become the largest network of independent primary care in the US, fostering a collaborative, inclusive, and remote-first culture.

$100,000–$160,000/yr
North America

  • Build and lead a high-performing Infrastructure Security team focused on cloud security, SASE, WAF, and edge technologies.
  • Drive security improvements, maintain KPIs on cloud security posture and incident response, and ensure tactical team oversight.
  • Partner with cross-functional teams and assume the role of Incident Manager during cloud or edge security events.

Applied Systems is an insurtech company that delivers innovative software and services to transform the insurance industry. With over 40 years of experience, the company fosters a culture of learning, collaboration, and diversity to empower its employees and customers alike.

US Unlimited PTO 16w maternity 16w paternity

  • Act as the main cybersecurity partner to Customer Support and Integrity teams, establishing the dedicated security function and building vision, strategy, and execution.
  • Lead technical direction, design security controls, and operationalize solutions to reduce risk for support agents and tooling across global teams.
  • Drive alignment, build measurable metrics, and perform security testing to proactively manage security risks at scale.

DoorDash is a technology and logistics company that enables door-to-door delivery, connecting consumers, merchants, and Dashers. They are a large, rapidly growing company committed to supporting employee happiness and health with comprehensive benefits and perks.

$71,640–$124,176/yr
US 4w PTO

  • Perform in-depth analysis, triage, and response to security threats following documented policies and playbooks.
  • Monitor and analyze security events using SIEM, EDR, and assess risk levels of cyber threats.
  • Escalate higher-risk events and collaborate with incident response teams to drive incident handling.

Experian is a global data and technology company that powers opportunities for people and businesses by redefining lending, preventing fraud, and creating digital solutions. With 23,300 employees across 32 countries, the company emphasizes inclusion, work-life balance, and has been recognized as a World's Best Workplace in 2024.

Europe

  • Respond to security incidents as part of a distributed 24x7 on-call schedule, triaging and containing events.
  • Conduct security investigations and forensics across data sources to determine event timelines and impact.
  • Build automations leveraging AI and agentic platforms to expedite incident response and scale team impact.

Databricks is the data and AI company, providing a unified platform for data, analytics, and AI. More than 10,000 organizations worldwide, including over 50% of the Fortune 500, rely on Databricks, which fosters a diverse and inclusive culture.

$185,000–$230,000/yr
US Unlimited PTO 13w maternity 12w paternity

  • Lead Flock's Security Incident Response Team (PSIRT) as the single point of accountability for all externally-reported and internally-discovered vulnerabilities.
  • Own the CNA, CVD program, and drive fixes across Hardware, Firmware, SRE, Mobile, ML, Legal, and more.
  • Set SLAs, metrics, playbooks, and public security advisories, reducing risk for devices and customers.

Flock builds technology that reduces crime and protects privacy, partnering with cities, businesses, schools, and neighborhoods. With over $1B in funding and an $8.3B valuation, they are a high-performance team united by urgency, ownership, and a shared commitment to meaningful impact.

India

  • Monitor, triage, and analyze security alerts and log data across enterprise security platforms, including SIEM and detection technologies.
  • Perform in-depth analysis of exploits, attacker behavior, and anomalous activity across endpoint, identity, network, cloud, and application data sources.
  • Support incident response activities, improve detections, and contribute to information security projects that strengthen overall security posture.

AHEAD builds platforms for digital business by weaving together advances in cloud infrastructure, automation and analytics, and software delivery. The company prioritizes a culture of belonging and is an equal opportunity employer.

US

  • Analyze, investigate, document, and report on security alerts or potential incidents in customer environments.
  • Process security investigation cases thoroughly and timely, and serve as an incident coordinator for urgent response and remediation.
  • Provide continuous feedback on process improvements and stay up-to-date on security training and emerging threats.

CyberSheath is a rapidly growing managed security services provider focused on cybersecurity for the Defense Industrial Base. They have a small but expanding team and emphasize a fully remote work culture.

$122,500–$165,000/yr
US

  • Proactively identify and respond to emerging security threats and incidents.
  • Develop detection techniques and manage core security tooling such as SIEM and orchestration platforms.
  • Collaborate across teams to support security projects and participate in on-call rotations.

Circle is a leading internet financial platform company building infrastructure for digital assets, stablecoins, and blockchain. They have a flexible work environment with values of high integrity and multistakeholder collaboration.