[Remote] Security Operations Center Engineer
Note: The job is a remote job and is open to candidates in USA. Builders FirstSource is America’s largest supplier of building materials, and they are seeking a Security Operations Center Engineer. This role is focused on enhancing the organization's cybersecurity posture through monitoring security alerts, investigating threats, and supporting incident response efforts.
Responsibilities
- Monitor SIEM/XDR/SOAR and other telemetry for alerts, anomalies, and indicators of compromise (IOCs)
- Perform Level 1-2 triage, enrichment, scoping, and prioritization of events
- Execute response playbooks (isolation, containment, account/device quarantine, EDR actions, network blocks)
- Support incident investigations (forensics acquisition, timeline analysis, root cause)
- Document incidents thoroughly (IR tickets, evidence handling, post-incident reports)
- Maintain shift logs, knowledge base updates, runbooks, and handoffs
Skills
- 2+ years relevant work experience
- Or an equivalent combination of experience and education
- Clear written and verbal communication, decision-making under pressure, and strong collaboration across IT and business teams
- Ability to work independently on shift and drive incidents to closure
- Certifications: GCIA, CySA+ (or equivalent experience)
- Experience with SentinelOne, Zscaler ZIA, Google Secops, Azure/M365 security tooling, E-mail security and PAM
Benefits
- Annual bonus subject to changes in plan design and documents and in accordance with applicable law. Eligibility and the amount of the bonus varies based on overall company success, thresholds met and other terms and conditions of the Company’s active bonus policy for the respective year.
- Medical, dental, vision, and disability insurance plans
- 401(k) retirement savings plan
- PTO (including paid sick time)
- 8 paid holidays per year (for salaried and hourly team members)
Company Overview
Company H1B Sponsorship