IT Security Engineer

The Basics

The Security Engineer will collaborate with Security IT and Engineering teams to defend and strengthen our security operations posture. You will be an integral part of theIT SecurityEngineeringTeam responsible for owning andoperatingour SOAR and SIEM platforms driving endpoint security initiatives and building the automation and processes needed to detect respond to and remediate threats across the environment.

Whatyoulldo

• Contributeto andmaintainour in-house SOAR platform develop automation playbooks extend capabilities and accelerate incident response
• Contribute to the aggressive adoption of AI tools within the Security team as well the protection of AI technologies across Tanium
• Manage and optimizeour SIEM environment maintaindata ingestion pipelines ensure log source coverage meets security requirements and partner with detection engineering on deployment and tuning
• Support endpoint security tooling deploy configure and troubleshoot endpoint detection and response (EDR) solutions across the fleet
• Review IT infrastructure changes for security implications ensuring new configurations and deployments align with security standards and best practices
• Partner with IT and infrastructure teams to onboard new log sources improve telemetry and close visibility gaps
• Contribute to incident response processes including containment eradication and post-incident review

Werelooking for someone with

SecurityExperience

• 35 years of experience in a security engineering security operations or detection engineering role
• Experience securing AI/ML workloads or applying AI-assisted tooling to security operations (e.g. LLM-driven triage automated analysis AI-augmented detection)
• Hands-on experience administering a SIEM platform (e.g. SentinelSplunk Elastic Chronicle)
• Hands-on experience with a SOAR platform (e.g. Cortex XSOAR Splunk SOAR Tines Swimlane)
• Solid understanding of endpoint security concepts EDR host-based detection OS-level telemetry
• Understanding of network protocols operating systems (Windows Linux macOS) and common enterprise infrastructure
• Experience operatingin and managing cloud environments (AWS Azure)

EngineeringExperience

• Proficiencyin scripting and automation (our stack is primarily Python but equivalent experience is welcome)
• Experience with CI/CD concepts pipelines automated testing and deployment workflows
• Experience managing infrastructure as code (e.g. Terraform)
• Strong troubleshootingandanalytical skills
• A relentless desire to automate the mundane to focus on solving the harder problems

Nice to Have

• Experience with Tanium for endpoint management visibility or security modules
• Experience with Azure Data Explorer (ADX) and Microsoft Sentinel
• Experience writing detection logic (SPL KQL Sigma or equivalent)
• Familiarity with detection engineering practices and frameworks such as MITRE ATT&CK
• Experience with threat intelligence platforms and enrichment workflows
• Cloud security monitoring experience (AWS Azure GCP)
• Experience supporting incident response in an engineering capacity data gathering log analysis and providing technical context to responders

About Tanium

On a mission. Together.

At Tanium we are stewards of a culture that emphasizes the importance of collaboration respect and our pursuit of revolutionizing the way some of the largest enterprises and governments in the world solve their most difficult IT challenges we are strengthened by our unique perspectives and by our collective actions.

As a global organization with stakeholders around the world its imperative that the diversity of our customers and communities is reflected internally in our team members. We strive to create a diverse and inclusive environment where everyone feels they have opportunities to succeed and grow because we know that only together can we do great things.

Our commitment to excellence and innovation has earned us a place on the Forbes Cloud 100 list for ten consecutive years and we continue to be recognized worldwide as a great place to work.

Each of our team members has 5 days set aside as volunteer time off (VTO) to contribute to the communities they live in and give back to the causes they care about most.

What youll get

The annual base salary range for this full-time position is $113000 to $173000. This range is an estimate for what Tanium will pay a new hire. The actual annual base salary offered may be adjusted based on a variety of factors including but not limited to location education skills training and experience.

In addition to an annual base salary team members will receive equity awards and a generous benefits package consisting of medical dental and vision plan family planning benefits health savings account flexible spending account transportation savings account 401(k) retirement savings plan with company match life accident and disability coverage business travel accident insurance employee assistance programs disability insurance and other well-being benefits.

For more information on how Tanium processes your personal data please see our

Tanium is an Equal Opportunity and Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race color religion sex national origin age gender identity sexual orientation disability protected Veteran status or other legally protected categories. If you require a reasonable accommodation in searching for a job opening completing an application interviewing or completing any pre-employment testing or requirements please contact. For more information refer to the Know Your Rights poster which is available here - be aware of job offers coming from people claiming to be Tanium employees. Tanium employees will only use @ email addresses to communicate with you will have video interviews with you and will never ask you for money.

This link leads to the machine readable files that are made available in response to the federal Transparency in Coverage Rule and includes negotiated service rates and out-of-network allowed amounts between health plans and healthcare providers. The machine-readable files are formatted to allow researchers regulators and application developers to more easily access and analyze data.