Platzhalter Bild

Defensive Security Engineer (Remote) at Vallen Distribution, Inc.

Vallen Distribution, Inc. · Belmont, United States Of America · Remote

Apply Now

Position Summary: 

Vallen’s Defensive Security Engineer will serve as a technical lead in threat detection, incident response, and the continuous development of Vallen’s defensive security tooling and automation. This is a hands-on, engineering-heavy role focused on building, integrating, and optimizing security platforms, from SIEM and SOAR to endpoint and cloud-native defenses.

 

Essential Job Duties and Responsibilities:

  • Support daily security operations by performing proactive threat hunting across endpoint, network, identity, and cloud data sources.
  • Lead investigation and response efforts for high-fidelity alerts, using behavioral analytics and MITRE ATT&CK-based analysis.
  • Manage detection pipelines, detection-as-code frameworks, and automated correlation rules across SIEM, EDR, MDR, and XDR platforms.
  • Design and implement automated response workflows in SOAR and XDR platforms.
  • Integrate alerting tools with threat intelligence platforms, ServiceNow, and remediation workflows.
  • Architect and maintain telemetry ingestion pipelines for logs, cloud-native signals, and third-party integrations.
  • Act as SME for Vallen’s security stack: SIEM, SOAR, EDR/MDR, UEBA, CSPM, container security, vulnerability scanners.
  • Support the vulnerability management program by contributing to risk analysis, remediation coordination, and process improvement initiatives.
  • Tune detection logic, logging schemas, and role-based access control (RBAC) policies across tools.
  • Enforce baseline hardening across Windows, Linux, macOS, and Azure-native services.
  • Partner with infrastructure and networking teams to implement microsegmentation, traffic analysis, and endpoint enforcement policies on network security platforms.
  • Lead integration efforts with platforms like SentinelOne, Fortinet, Proofpoint and O365.
  • Contribute to continuous improvement of detection and response capabilities, processes, playbooks, and security tool strategies.
  • Develop and maintain clear process documentation for security operations, enabling IT teams to effectively support end users and resolve security-related tickets.
  • Monitor threat landscape and threat intelligence resources to ensure emerging threats are proactively accounted for within the security platform suite.
Apply Now

Other home office and work from home jobs