Redapt Inc. is a pioneering world-class data center infrastructure integrator, technology engineering firm, and cloud services provider. Our teams focus on delivering innovative solutions and services that power our customers' most demanding applications and enable them to extract powerful insights from data that drive true business value.
Role Title: Senior Security Engineer
Location: Remote
Role Type: Contract
Length: 3 Months
Summary
The Senior Security Engineer 2 will own and operate Google SecOps (SIEM/SOAR), Cribl Pipelines, Secret Server (PAM), Cyberhaven DLP, and the Proofpoint Email Security Suite. This role focuses on log ingestion pipeline tuning, security event analysis, PAM and DLP system administration, and strengthening email threat defense.
Key Responsibilities
- Google SecOps (SIEM) & Cribl
- Manage Google SecOps/SIEM for threat detection, alerting, and investigation workflows.
- Configure, optimize, and troubleshoot Cribl Pipelines, including routing, filtering, and data transformation.
- Maintain permissions, application needs, and data integration health across the SIEM ecosystem.
- Support detection development and correlation logic tuning.
- Secret Server (PAM)
- Administer Thycotic/Delinea Secret Server for privileged credential management.
- Manage vaulting, rotation, permissions, access policies, and integration with other systems.
- Troubleshoot authentication failures, vault sync issues, and automation scripts.
- Cyberhaven DLP
- Maintain and configure Cyberhaven DLP for data loss prevention.
- Monitor alerts, investigate potential data exfiltration events, and adjust policies.
- Support incident response workflows for DLP events.
- Proofpoint Suite
- Administer Proofpoint email security tools including TAP, TRAP, and DLP components.
- Tune phishing, malware, and impersonation detection rules.
- Analyze email threat logs, quarantine queues, and end‑user reports.
- Cross‑Role Support
- Assist Senior Security Engineer 1 during major Palo Alto or CrowdStrike incidents or upgrades.
- Collaborate on enterprise-wide security improvements.
- Duties as Assigned
- Troubleshoot and support related platforms as needed for security incident resolution.
- Participate in onboarding sessions, implementation tasks, and knowledge-sharing activities.
Requirements
Must‑Have Qualifications
- 5–8+ years of security engineering or operations experience.
- Hands-on SIEM experience (Google SecOps preferred).
- Experience with Cribl or similar log pipeline tools.
- Proficiency with Privileged Access Management (Secret Server strongly preferred).
- Experience with DLP technologies (Cyberhaven ideal, others acceptable).
- Experience with enterprise email security suites (Proofpoint preferred).
- Strong analytical and incident response capabilities.
Nice-to-Have Skills
- Certifications in:
- Google Cloud/Security (e.g., Professional Cloud Security Engineer)
- Cribl Certified Observability Engineer
- Delinea/Thycotic PAM certifications
- Proofpoint PPS/PCES certifications
- Experience with SOAR automation and playbooks.
- Background in scripting languages (Python, PowerShell, Bash).
- Knowledge of data governance, insider threat, or compliance frameworks (e.g., NIST, CIS, SOC2).
Soft Skills
- Strong communication and client-facing presence.
- Excellent troubleshooting and investigative mindset.
- Ability to work cross-functionally and provide mentorship.
- Adaptability in rapidly changing environments.
Equal Employment Opportunity:
Redapt is an equal opportunity employer. Applicants will not be discriminated against because of race, color, creed, sex, sexual orientation, gender identity or expression, age, religion, national origin, citizenship status, disability, ancestry, marital status, veteran status, medical condition, or any protected category prohibited by local, state, or federal laws. All employment is decided based on qualifications, merit, and business need.
#LI-TS1
