Description
WHO WE ARE
Come join the company reinventing data security, empowering businesses to realize the full potential of their data. As the leading data security platform purpose-built for the cloud era, Cyera’s mission is to reinvent how businesses secure data, enable agile collaboration, and boldly pursue new business opportunities. Trusted by security teams at leading global businesses, our team is proving that data security is the next big thing in cyber. Backed by the world’s leading investors and working with a large and growing list of Fortune 1000 companies, we are looking for world-class talent to join us as we usher in the new era of data security.
THE OPPORTUNITY
Join our team as a Security Engineer working within an agentic SOC environment. This role is designed for someone who is ready to grow beyond traditional analyst responsibilities and move deeper into security engineering, automation, cloud security, detection engineering, and AI-assisted security operations.
You will help build, operate, and improve a modern SOC that uses automation, agentic workflows, AI-assisted investigation, and security engineering practices to improve detection, triage, response, and overall security visibility. This is a hands-on role for someone who enjoys solving technical problems, improving systems, and building security capabilities rather than only monitoring alerts.
The ideal candidate has 2–3 years of cybersecurity experience, a strong SOC foundation, hands-on AWS knowledge, Python proficiency, and experience working with SIEM data and log pipelines. We are looking for someone motivated, curious, and eager to grow into a stronger security engineer within a modern, engineering-driven SOC model.
RESPONSIBILITIES:
- Security Engineering: Build, maintain, and improve security workflows, integrations, detection processes, and operational tooling within an agentic SOC.
- Agentic SOC Operations: Work with automation, AI-assisted workflows, and agent-based capabilities that support alert triage, investigation, enrichment, and response.
- SIEM Log Flow Development: Help design, configure, maintain, and troubleshoot log ingestion flows into the SIEM from AWS, applications, infrastructure, endpoint tools, and security platforms.
- Detection Engineering: Create, tune, and maintain detection rules, alert logic, dashboards, playbooks, and investigation workflows.
- Python Automation: Develop Python scripts and automations for alert enrichment, data processing, reporting, workflow improvement, and security operations support.
- Cloud Security Monitoring: Support cloud security logging, monitoring, IAM reviews, and cloud detection use cases.
- SOC Operations: Review, analyze, and correlate security alerts and logs to identify suspicious activity and support investigations.
- Incident Response Support: Assist with security event investigations, escalation, containment, remediation, and post-incident improvements.
- Process Improvement: Help improve SOC processes, playbooks, detection coverage, documentation, and response workflows.
- Cross-Functional Collaboration: Partner with security, cloud, IT, and engineering teams to improve visibility, reduce risk, and strengthen security operations.
Requirements
REQUIRED QUALIFICATIONS:
- Experience: 2–3 years of experience in cybersecurity, SOC operations, security engineering, cloud security, detection engineering, or incident response.
- AWS Knowledge: Working knowledge of AWS services, cloud security fundamentals, logging, monitoring, IAM, and basic cloud architecture.
- AWS Certification: AWS entry-level certification required at minimum, such as AWS Certified Cloud Practitioner. AWS Solutions Architect – Associate or AWS Security Specialty is a plus.
- Python Proficiency: Hands-on proficiency with Python for scripting, automation, data processing, security tooling, or workflow development.
- SIEM Experience: Experience working with SIEM platforms, including log ingestion, parsing, alerting, dashboards, and detection logic.
- Log Pipeline Experience: Experience building, maintaining, or troubleshooting log flows from applications, infrastructure, AWS services, endpoint tools, or security platforms into a SIEM.
- SOC Foundation: Strong understanding of SOC workflows, alert triage, investigation, escalation, and incident response processes.
- Detection Knowledge: Ability to help develop, tune, and improve detections based on logs, threat behavior, and operational needs.
- Agentic SOC Familiarity: Familiarity with agentic concepts, agentic frameworks, AI-assisted workflows, autonomous or semi-autonomous agents, and practical security operations use cases.
NICE TO HAVE:
- Agentic/AI Security Use Cases: Hands-on exposure to LLMs, AI agents, agentic workflows, or AI-assisted security operations.
- Detection Languages: Experience with Sigma, SPL, KQL, SQL, YARA, or similar detection/query languages.
- Infrastructure as Code: Familiarity with Terraform, CloudFormation, CDK, or similar tools.
COMPENSATION INFORMATION:
Compensation Range: $80,000-$150,000.
The range represents total compensation, and may include incentive for sales roles, equity or benefits, as applicable.
This compensation range represents Cyera’s good faith and reasonable estimate of the range of possible compensation for this role at the time of posting, and Cyera may ultimately pay more or less than the posted range. The final salary for this position will be determined in Cyera’s sole discretion, consistent with applicable law, and based on a variety of factors, including but not limited to the employee’s work experience, skills, and qualifications for the role, as well as the needs of Cyera’s business and other operational considerations.
Final compensation will vary based on seniority and relevance of experience, location, and position requirements.
This role may be eligible for potential merit increases based on factors such as individual or company performance, time in role, and other discretionary factors.
**BENEFITS - Why Cyera? **
- Ability to work remotely, with office setup reimbursement
- Competitive salary
- Unlimited PTO
- Paid holidays and sick time
- Health, vision, and dental insurance
- Life, short and long-term disability insurance