Security Operations Engineer

Insight Global is seeking a Security Operations Engineer to support a large Industrial Distribution client of ours of North Carolina. This candidate will be responsible for supporting and enhancing the organization’s security operations and engineering capabilities. Blending hands-on threat detection and incident response with security platform administration, automation, and continuous improvement. The position plays a critical role in maintaining the health and effectiveness of the enterprise security stack, strengthening identity and cloud security controls, and ensuring the organization’s ability to detect, respond to, and mitigate evolving cyber threats.

Responsibilities:
Support daily security operations through proactive threat hunting across endpoint, network, identity, email, and cloud environments.
Support investigation and response activities for high-confidence alerts using behavioral analytics, threat intelligence, and MITRE ATT&CK–aligned analysis.
Manage and maintain detection pipelines, correlation rules, and automated response workflows across SIEM, EDR/XDR, SOAR, and email security platforms.
Act as subject matter expert for the enterprise security stack, ensuring platform health, optimization, and continuous improvement.
Administer and support identity and access management (IAM) controls, including conditional access, role-based access control (RBAC), and Zero Trust enforcement across enterprise platforms.
Support the vulnerability management program through risk analysis, remediation coordination, validation of security fixes, and translation of findings into actionable guidance for infrastructure and development teams.
Collaborate with infrastructure, cloud, and development teams to improve security posture and remediate identified risks.
Enforce system baseline hardening standards across Windows, Linux, macOS, and Azure services.
Support compliance initiatives by maintaining documentation, gathering audit evidence, and contributing to alignment with applicable security frameworks.
Develop and maintain clear operational documentation, playbooks, and procedures to enhance response consistency and cross-team collaboration.
Continuously monitor the threat landscape and adjust detection and response capabilities accordingly.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

- 2-4 years in a technical security role (SOC Tier 2/3, security engineering, incident response, or equivalent).
Hands-on experience with SIEM (e.g., Sentinel, Splunk), EDR/XDR (e.g., SentinelOne, Defender), and SOAR platforms.
Proficiency in PowerShell and Bash scripting with practical experience automating security and system administration tasks.
Experience administering Microsoft platforms (Microsoft 365, Windows 11, Active Directory, Azure, Intune, Entra, Defender, etc.).
Experience with threat detection engineering and mapping detections to MITRE ATT&CK.
Familiarity with secure baselining (CIS/NIST), access controls, and platform hardening.

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.