"Alerted.org

10524 - Senior Security Engineer

Location - Fountain Valley, CA (Hybrid)

Hyundai Autoever America (HAEA) is a global technology solutions provider dedicated to delivering exceptional services to our clients in the Hyundai Motor family. We specialize in providing comprehensive IT solutions tailored to meet the unique needs of businesses across various industries in North America.

Job Summary

The Senior Security Engineer is an individual contributor responsible for leading and maturing the organization’s cybersecurity capabilities, with a primary focus on threat and vulnerability management, incident response, SIEM/SOAR operations, and application security. This role designs, implements, and optimizes security processes and technologies, including Rapid7, Splunk, and SentinelOne, to protect the confidentiality, integrity, and availability of information assets. The engineer will collaborate cross-functionally to drive incident resolution, enhance threat detection, and ensure compliance with corporate security policies.

Essential Functions

+ Threat and Vulnerability Management (Rapid7):

+ Lead the Vulnerability Management Program using Rapid7 (InsightVM/Nexpose) to identify, assess, and prioritize vulnerabilities across infrastructure and applications.

+ Review and analyze vulnerability and threat data from internal/external scans, penetration tests, and other sources to determine risk ratings and remediation strategies.

+ Oversee patch management, vulnerability remediation, and threat mitigation efforts, ensuring timely notifications and accomplishment reporting.

+ Automate vulnerability lifecycle processes, including data ingestion, normalization, and compliance metrics.

+ Provide technical support for vulnerability management projects and post-remediation validation.

+ SIEM/SOAR Operations (Splunk):

+ Design, administer, and optimize Splunk for security event monitoring, log analysis, and threat detection.

+ Develop and maintain SOAR playbooks to automate incident response workflows and improve operational efficiency.

+ Create dashboards, reports, and alerts to provide visibility into security events and compliance metrics.

+ Incident Response (SentinelOne):

+ Lead incident response efforts using SentinelOne, driving cross-functional collaboration to resolve security incidents impacting confidentiality, integrity, or availability.

+ Develop and maintain IR playbooks, procedures, and templates to standardize response processes and improve remediation speed.

+ Define incident criticality levels and prioritize response efforts based on risk and impact.

+ Report on incident performance metrics and identify opportunities to enhance IR capabilities.

+ Application Security:

+ Conduct application security assessments, including code reviews, penetration testing, and secure development practices.

+ Collaborate with development teams to implement secure coding standards and mitigate application vulnerabilities.

+ Stay current with emerging application security threats and recommend cost-effective controls.

+ General Responsibilities:

+ Partner with IT and business units to communicate risks, recommend security controls, and drive remediation efforts.

+ Optimize security tools (e.g., EDR, IDS/IPS, firewalls) and processes for scalability and automation.

+ Interface with third-party vendors and partners to enhance the organization’s security posture.

+ Stay current with industry trends, vulnerabilities, and best practices in cloud computing, networking, and cybersecurity.

+ Support compliance with regulatory standards (e.g., NIST, ISO 27001, PCI DSS, SOC 1/2).

Job Requirements

+ Education: Bachelor’s Degree in Computer Science, Information Systems, Cyber or related field, or equivalent experience.

+ Experience:

+ 7+ years of cybersecurity experience, with at least 5 years in threat and vulnerability management, incident response, or SIEM/SOAR operations.

+ Hands-on experience with Rapid7 (InsightVM/Nexpose), Splunk (SIEM/SOAR), and SentinelOne (EDR/IR).

+ Strong knowledge of application security practices, including secure coding, penetration testing, and vulnerability assessments.

+ Experience with security technologies such as IDS/IPS, firewalls, EDR, and network behavior analysis tools.

+ Familiarity with cloud computing, automation, networking, and systems administration.

+ Skills and Attributes:

+ Proven ability to lead complex security initiatives and drive cross-functional collaboration.

+ Strong analytical skills to assess risks, prioritize vulnerabilities, and recommend solutions.

+ Excellent communication skills to articulate technical risks and solutions to technical and executive audiences.

+ Ability to work independently, manage multiple priorities, and deliver projects on schedule.

+ Detail-oriented with a focus on process improvement and automation.

+ Preferred Certifications: CISSP, CEH, GCIH, Splunk Certified User/Admin, Rapid7 Certified Administrator, or other relevant certifications.

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

Salary Range   (Min) $103,170 - (Max) $158,873

Powered by JazzHR