Senior Security Operations Engineer

Job Description

League is seeking a Senior Security Operations Engineer to join its Security Engineering team. This role focuses on detection, response, tuning, and refinement of security measures. The Senior SecOps Engineer will be responsible for monitoring security events, leading incident response efforts, and developing incident response plans. They will also manage security tools, implement automation scripts, and conduct threat research. The ideal candidate will collaborate with cross-functional teams, communicate security risks, and ensure compliance with security standards.

Responsibilities:

• Monitors security events and alerts from various sources.
• Leads security incident response efforts.
• Develops and maintains incident response plans, playbooks, and procedures.
• Coordinates with cross-functional teams during security incidents.
• Performs root cause analysis of security incidents and recommend preventive measures.
• Manage and maintain security tools and technologies, such as SIEM, EDR, and SASE platforms.
• Develop and implement automation scripts and workflows to improve security operations efficiency and effectiveness.
• Conduct threat research and analysis to identify emerging threats and vulnerabilities.
• Contribute to the design and implementation of security systems architectures and solutions.
• Evaluate and recommend security controls for new and existing systems.
• Ensure security best practices are followed in system development and implementation.
• Collaborate with other teams to ensure security is integrated into all aspects of the organization's operations.
• Communicate security risks and issues to technical and non-technical audiences, including leadership.
• Ensure compliance with relevant security standards and regulations.
• Prepare and present security reports to management.
• Participate in routine audits within the organization

Requirements:

• Bachelor of Science degree in Computer Science or related field.
• 5+ years of experience in security operations, incident response, or a related role.
• Deep technical understanding of security concepts, principles, and technologies.
• Experience with security monitoring tools (e.g., SIEM, EDR).
• Proven experience leading and coordinating incident response processes.
• Proficiency in scripting languages (e.g., Python, Go).
• Infrastructure as Code (Terraform, Ansible) experience or a strong desire to learn.
• Experience with threat intelligence platforms.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.

The role offers:

• Opportunity to work remotely in Canada.
• Chance to contribute to the security of a leading healthcare platform.
• Collaborative and supportive work environment.
• Mentorship and guidance for technical growth.