Security Engineer - Remote

About the position The Security Engineer at Experian will play a crucial role in enhancing the security posture of the organization by working closely with various internal teams. This position involves managing security log feeds, developing use cases based on threat intelligence, and improving vulnerabilities across application environments. The role requires a strong background in security engineering and incident response, with a focus on leveraging data and analytics to prevent security incidents. Responsibilities • Understand data feeds of multiple security tools and logs that feed the SIEM & UEBA technologies, identifying capabilities and recommending improvements. • Create new content use cases based on threat intelligence, analyst feedback, available log data, and previous incidents. • Perform daily activities of the content life cycle, including creating new use cases, testing content, tuning, and maintaining associated documentation. • Improve vulnerabilities in different application environments. • Work with other security teams and product SMEs to identify gaps within existing capabilities. • Develop parsers/field extractions to facilitate reliable content development. • Develop custom scripts to enhance default SIEM functionality. • Participate in root cause analysis on security incidents and provide recommendations for new data sources and enrichment. Requirements • 5+ years experience in security engineering or site reliability engineering. • Excellent Terraform skills required. • Experience working with and developing CI/CD pipelines for Infrastructure as Code required. • Knowledge of programming/scripting fundamentals (python/golang) required. • Expertise in performing ETL onboarding for diverse log feed technologies required. • Experience supporting a Splunk platform administration, new content dashboards, applications, and use cases. • Hands-on experience developing Rest API's to capture data from external sources. • Experience with Agile methodologies. • Understanding of multiple log formats and source data for SIEM Analysis. • Solid background with Windows and Linux platforms (security or system administration). • Experience with technical concepts including networking and several cyber attacks. Benefits • Remote work from within the US • Great compensation package and bonus plan • Core benefits including medical, dental, vision, and matching 401K • Flexible work environment, ability to work remote, hybrid or in-office • Flexible time off including volunteer time off, vacation, sick and 12-paid holidays Apply tot his job