Apolloio - Senior Security Operations Engineer
Upload My Resume
Drop here or click to browse · PDF, DOCX, DOC, RTF, TXT
Requirements
• 5+ years of experience in Security Operations or Incident Response. • 5+ years • Hands-on experience with SIEM platforms (experience with Panther is highly valued), log analysis, and detection engineering. • Panther • Experience investigating security incidents in cloud-native environments (GCP preferred; AWS and Azure also relevant) and SaaS applications. • Experience automating security workflows and investigations. • Proficiency in Python; familiarity with Ruby preferred. • Python • Ability to operate independently, prioritize effectively, and make sound technical decisions under pressure. • Experience using AI or ML-powered security tools for detection, investigation, or response. • Familiarity with vulnerability management concepts and remediation workflows. • Relevant certifications such as GCIA, GCIH, GCED, AWS / GCP Security certifications, or Security+. • GCIA, GCIH, GCED, AWS / GCP Security certifications, or Security+ • Prior experience working in fully remote, distributed teams. • We are AI Native • Apollo.io is an AI-native company built on a culture of continuous improvement. We’re on the front lines of driving productivity for our customers—and we expect the same mindset from our team. If you're energized by finding smarter, faster ways to get things done using AI and automation, you'll thrive here.
Responsibilities
• Incident Detection, Investigation & Response • Monitor, triage, and investigate security alerts and events across cloud infrastructure, SaaS applications, and corporate systems. • Conduct end-to-end security investigations, including scoping, containment, eradication, recovery, and documentation. • Own investigations independently while collaborating effectively during high-severity incidents. • SIEM, Detection & Workflow Engineering • Configure and maintain SIEM detections in Panther, including use cases, correlation rules, alert logic, and tuning. • Onboard, validate, and maintain log sources to ensure visibility, accuracy, and reliability. • Design and improve investigation and response workflows to streamline triage, escalation, and resolution. • Leverage AI-assisted tools to accelerate alert analysis, enrichment, and investigation efficiency. • Threat Hunting & Proactive Security • Perform proactive threat-hunting activities to identify malicious or anomalous behavior not surfaced by existing detections. • Investigate abuse, fraud, account compromise, and automation misuse scenarios in close collaboration with Fraud teams. • Identify detection gaps and propose, implement, and validate improvements. • Automation, Coding & Tooling • Build scripts, automations, and tools to reduce manual work and improve response speed and consistency. • Use Python extensively for analysis, automation, and internal tooling; Ruby experience is a plus. • Contribute to internal detection frameworks, tooling, and shared libraries. • Documentation & Continuous Improvement • Produce clear, high-quality documentation for incidents, investigations, and post-incident reviews. • Contribute to runbooks, playbooks, and operational standards.
Benefits
• At Apollo, we’re driven by a shared mission: to help our customers unlock their full revenue potential. That’s why we take extreme ownership of our work, move with focus and urgency, and learn voraciously to stay ahead. • take extreme ownership • move with focus and urgency • learn voraciously • We invest deeply in your growth, ensuring you have the resources, support, and autonomy to own your role and make a real impact. Collaboration is at our core—we’re all for one, meaning you’ll have a team across departments ready to help you succeed. We encourage bold ideas and courageous action, giving you the freedom to experiment, take smart risks, and drive big wins.
Similar Jobs
No credit card. Takes 10 seconds.