Job Title: Detection and Response, Principal Engineer/Lead
Location: [US, Remote]
ABOUT THIS ROLE:
Aviatrix is a leader in cloud networking and security solutions, helping organizations enhance their network visibility, security, and operational efficiency across multi-cloud environments. We work with a managed detection and response (MDR) provider to maintain high standards of security for our customers, and we’re looking for a lead Detection & Response Engineer to join our team to support and enhance our internal security operations.
Job Overview:
As a lead Detection and Response Engineer, you will play a critical role in our Security Operations Center (SOC) by working closely with our MDR provider, monitoring security events, mentoring junior D&R engineers, and coordinating incident responses with our enterprise security and product security teams. You will help analyze, investigate, and respond to potential security incidents, contributing to the continuous improvement of Aviatrix’s security posture. This is a hands-on, senior position that requires a solid understanding of cloud network security, enterprise security, incident response, and SOC processes.
Key Responsibilities:
- Monitor and Analyze Security Alerts: Collaborate with our MDR provider to monitor and review security alerts, conduct initial triage, and analyze potential security incidents.
- Incident Investigation and Response: Perform incident investigations as a tier-2+ level analyst by gathering relevant data, conducting analysis, and coordinating responses for incidents affecting internal or customer-facing cloud infrastructure.
- Collaborate closely with Enterprise Security and Product Security teams on mitigation strategies and RCA.
- Threat Detection and Mitigation: Work with the D&R team and MDR provider to identify, contain, and remediate security threats, with a focus on cloud and network security threats.
- Tool Management and Optimization: Support and optimize security tools and platforms (e.g., SIEM, EDR, NDR) to enhance detection capabilities, improve workflows, and reduce false positives.
- Documentation and Reporting: Maintain detailed incident documentation and contribute to security reports, dashboards, and metrics to track SOC performance.
- Threat Intelligence Integration: Leverage threat intelligence to inform detection and response strategies, working with the MDR provider to implement updated threat indicators.
- Continuous Improvement: Contribute to the development of SOC playbooks, incident response procedures, custom detection rules, and best practices for cloud network and security operations.
Required Skills and Experience:
- 8+ years of experience in a SOC environment or in security operations, with a focus on cloud network security and incident response
- Deep knowledge of the MITRE attack framework
- Proficiency in one or more programming or scripting languages, such as Python or Go, for automation tasks; knowledge of IaC tools such as Terraform is a plus
- Cloud Security Knowledge: Solid experience with cloud platforms (AWS, Azure, GCP) and cloud security concepts and controls
- Proficiency in using and optimizing SOC tools, such as SOAR, SIEM, EDR, and NDR solutions; experience with log analysis, network security monitoring, and threat detection tools
- Solid understanding of endpoint protection, routers, switches, perimeter security, authentication, encryption, and VPN solutions
- Incident Response: Solid understanding of incident response methodologies, including investigation, containment, eradication, and recovery
- Threat Intelligence Awareness: Familiarity with leveraging threat intelligence to enhance detection and response capabilities
- Ability to work in an operational environment with flexible working hours and ability to be on call, including nights and weekends
- Education and Certification: Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent work experience
- Industry certifications (e.g., CompTIA Security+, AWS Certified Security, GCIH) are a plus
US Pay Range
The US National annual base salary range for this full-time position is $184,600-$202,000 + benefits + 401(k) match + equity. The pay range is determined by the role, work location, job-related skills, level, experience and relevant education. [Certain roles are eligible to earn sales commission, depending on the terms of the applicable plan.] The range displayed is the minimum and maximum target base salary and is applicable only for new hires for the listed position located in the US. Your Talent Advisor can share more details regarding salary ranges, benefits, and equity for your location during the hiring process.
#LI-LD1
#LI-REMOTE
BENEFITS
US: We cover 100% of employee premiums and 88% of dependent(s) premiums for medical, dental and vision coverage, 401(k) match, short and long-term disability, life/AD&D insurance, $1,000/year education reimbursement, and a flexible vacation policy.
Outside the US: We offer a comprehensive benefits package which, (subect to regional variations) could include pension, private medical for you and dependents, generous holiday allowance, life assurance, long-term disability, annual wellbeing stipend
Your total compensation package will be based on job-related knowledge, education, certifications and location, per our aligned ranges.
About Aviatrix
Aviatrix is the cloud networking expert. We’re on a mission to make cloud networking simple so companies stay agile. Trusted by more than 500 of the world’s leading enterprises, our cloud networking platform creates the visibility, security, and control needed to adapt with ease and move ahead at speed. Combined with the Aviatrix Certified Engineer (ACE) Program, the industry's leading multicloud networking and security certification, Aviatrix empowers the cloud networking community to stay at the forefront of digital transformation.
WE WANT TO INCLUDE YOU
We embrace the fact that not everyone’s journey took the same route or started at the same place. If your experience doesn’t quite meet the requirements but the opportunity excites you and you believe you could be great, don’t let that hold you back from applying. Tell us what you CAN bring and what makes you special.
Aviatrix is a community where everyone's career can grow and we want to help you achieve your goals and be “your best YOU,” however that looks. If you're seeking an opportunity where you can be excited to start work every morning with enthusiastic people, make a real difference and be part of something amazing then let’s talk. We want to get to know you and how we could grow together.
Aviatrix, Inc. is an equal opportunity employer and does not make hiring decisions based on race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
CPRA - California Applicant Privacy Notice
Top Skills
What We Do
Aviatrix cloud network platform delivers advanced networking, security and operational visibility required by enterprises with the simplicity and automation of cloud. More than 400 customers worldwide leverage Aviatrix and it’s proven multi-cloud network reference architecture to design, deploy and operate a repeatable network and security architecture that is consistent across any public cloud. Combined with the industry’s first and only multi-cloud networking certification (ACE), Aviatrix is empowering IT to lead and accelerate the transformation to the cloud. Learn more at Aviatrix.com.
