Abacus Insights - Security Operations Engineer

• Security Operations & Triage • Own the end-to-end‑ lifecycle of security operational work from intake to closure, including triage, prioritization, routing, and verification. • Serve as the primary owner of the security operations backlog in Jira, ensuring issues are clearly scoped, properly assigned, and progressing. • Triage and manage findings from security tooling (e.g., CSPM, SIEM, DLP, endpoint security), escalating when necessary and closing the loop with evidence. • Act as the first line of operational response for routine security requests such as firewall rules, IP allowlisting, certificate management, logging changes, and access related‑ exceptions. • Vulnerability & Findings Management • Manage cloud and application security findings through remediation, exception, or risk acceptance workflows. • Coordinate directly with engineering teams on remediation efforts, ensuring expectations, deadlines, and verification steps are clear. • Maintain accurate status tracking and supporting evidence for remediation and audit purposes. • Support recurring vulnerability management activities and reporting requirements. • Monitoring, Logging & Detection Hygiene • Execute daily, weekly, and monthly security review tasks, including log reviews, alert reviews, and dashboard verification. • Ensure required logs are present, flowing, and usable; identify and escalate gaps in coverage. • Support continuous improvement by documenting operational pain points and recurring failures for engineering follow-up‑. • Compliance & Audit Operations • Produce and maintain security artifacts required for audits, customer assurance, and regulatory reviews. • Own recurring security operational tasks tied to compliance (e.g., access reviews, log review evidence, vulnerability reports). • Ensure evidence is complete, reproducible, and stored according to defined standards. • Process & Runbook Ownership • Maintain and improve security operations runbooks, checklists, and standard operating procedures. • Help normalize and standardize how security work is requested, tracked, and completed across teams. • Identify opportunities to reduce manual effort through better workflow design or handoff to engineering for automation.