Security Operations Engineer (DOA)
$110.85k - $127.37kRicouncil94
- # Security Operations Engineer (DOA)Applylocations: 50 Service Ave Warwicktime type: Full timeposted on: Posted Todaytime left to apply: End Date: June 26, 2026 (9 days left to apply)job requisition id: JR103124# **Department**Department of Administration# **Division**Information Technology/Computers# **Salary**$110,849.00 - $127,368.00# **Job Profile**JC-02797007-99 - Security Operations Engineer (DOA) (Non-Union Executive Branch Agency Employeess)# **Scheduled Work Days & Work Hours**Monday - Friday, 8:30am - 4:00pm35 Hours - Non-StandardDue to nature of position and role, response actions may be required outside of normal business hours.# **Job Requisition Number**JR103124 Security Operations Engineer (DOA) (Open)# **Pay Grade**C00140 A# **Classification**Security Operations Engineer (DOA)# **Class Definition****GENERAL STATEMENT OF DUTIES:** Within the Division of the Enterprise Technology Strategy & Services (ETSS); to perform, organize, direct, and coordinate the planning, administration, and maintenance of the State’s enterprise security technology stack supporting the Security Operations Center (SOC); to manage, optimize, and integrate detection and response tools including endpoint protection, SIEM, vulnerability management, and email security platforms; to enhance statewide cyber defense capabilities through automation, continuous monitoring, and actionable visibility; and to perform related duties as required. **SUPERVISION RECEIVED**: Works under the direct supervision of the Deputy Chief Information Security Officer (Deputy CISO) within the Enterprise Technology Strategy & Services (ETSS) cybersecurity vertical, with wide latitude for the exercise of independent judgment in the application of cybersecurity engineering, threat detection, and security operations principles. Work is reviewed upon completion for conformance with departmental policies, standards/frameworks like NIST, and state and federal security requirements. **SUPERVISION EXERCISED:** May plan, coordinate, and direct the work of professional and technical team members engaged in SOC technology administration, threat detection, log analysis, vulnerability management, and response operations. Provides guidance to enterprise and agency support colleagues on event monitoring, alert triage, and security platform utilization.**ILLUSTRATIVE EXAMPLES OF WORK PERFORMED:*** Within the Division of the Enterprise Technology Strategy & Services (ETSS); to perform, organize, direct, and coordinate the planning, administration, and maintenance of the State’s enterprise security technology stack supporting the Security Operations Center (SOC); to manage, optimize, and integrate detection and response tools including endpoint protection, SIEM, vulnerability management, and email security platforms; to enhance statewide cyber defense capabilities through automation, continuous monitoring, and actionable visibility.* To serve as the technical lead and subject matter expert (SME) for the enterprise security technology stack supporting the SOC, including SIEM, EDR, IDS/IPS, Proofpoint email security, and Qualys VMDR.* To administer and optimize detection, response, and vulnerability tools to ensure reliable data ingestion, alert fidelity, and integration with incident response workflows.* To configure and tune Microsoft Sentinel, CrowdStrike Falcon, Qualys VMDR, and Proofpoint TAP/SEG platforms to reduce false positives and improve detection accuracy.* To manage Qualys VMDR scanning schedules, sensor health, and asset inventory synchronization to ensure vulnerability visibility across state systems.* To maintain dashboards, correlation rules, and alerting logic that enhance situational awareness for the SOC.* To coordinate with security analysts and engineers to maintain automated playbooks and detection content aligned with MITRE ATT&CK techniques.* To ensure that log and vulnerability data from network, endpoint, and cloud systems are collected, retained, and correlated in accordance with NIST 800-53 AU (Audit), RA (Risk Assessment), and SI (System Integrity) controls.* To maintain and update authorized software lists, asset groupings, and detection search libraries; escalate major tool configuration or development requests to senior engineers.* To support security incident response activities, including triage, containment, and post-incident validation.* To collaborate with patch management and IT operations teams to communicate vulnerability findings and track remediation through dashboards and metrics.* To assist in vulnerability validation, risk scoring, and verification of detection coverage following threat advisories or audits.* To develop and maintain documentation, runbooks, and configuration baselines for all assigned systems.* To support SOC operations during audits, compliance assessments, and statewide cyber exercises.* To complete other related work tasks as required to align with evolving technologies, threats, and organizational priorities.* To do related work as required.**REQUIRED QUALIFICATIONS FOR APPOINTMENT:****KNOWLEDGE, SKILLS AND CAPACITIES:** A thorough knowledge of the principles and practices of security operations engineering, including monitoring, threat detection, and response automation; knowledge of security technologies such as SIEM (Microsoft Sentinel, Splunk), EDR/MDR (CrowdStrike Falcon, Defender for Endpoint), Qualys VMDR, and Proofpoint Email Protection and TAP; knowledge of vulnerability management lifecycle, including scanning, validation, and reporting workflows using tools like Qualys VMDR; knowledge of threat detection and response methodologies aligned to MITRE ATT&CK, NIST CSF 2.0, and NIST SP 800-53 Moderate frameworks; knowledge of network protocols, system hardening, and secure configurations for Windows, Linux, and cloud platforms; knowledge of cyber threat intelligence indicators, phishing defense techniques, and email security analysis; knowledge of the fundamentals of risk analysis, digital forensics, and vulnerability prioritization; knowledge of change management, configuration control, and log retention policies for security platforms; knowledge of federal and state cybersecurity compliance requirements applicable to government systems (e.g., IRS 1075, CJIS, HIPAA); skill in administering and maintaining SOC detection, response, and vulnerability management tools across a hybrid enterprise environment; skill in using PowerShell, Python, or KQL to automate alert enrichment, dashboard generation, or data validation; skill in configuring and tuning Proofpoint email security to detect and mitigate phishing, spoofing, and malware campaigns; skill in managing Qualys VMDR scans, tagging, and reporting to support agency patching and remediation workflows; skill in correlating and interpreting event and vulnerability data across SIEM, EDR, and VMDR platforms to identify high-priority risks; skill in developing and maintaining system documentation, incident workflows, and configuration baselines; skill in communicating technical information effectively to non-technical staff, agency partners, and executive leadership; ability to analyze, triage, and respond to security incidents using SOC tools and standard operating procedures; ability to coordinate with SOC analysts, IT administrators, and agency staff to prioritize remediation and improve detection coverage; ability to apply sound technical judgment in managing and tuning multiple security technologies simultaneously; ability to work independently on complex issues while maintaining alignment with enterprise cybersecurity objectives; ability to handle sensitive data discreetly and uphold integrity during investigations or vulnerability disclosures; ability to stay current on emerging threats, detection techniques, and security tools that enhance statewide defensive capabilities; and related capacities and abilities.**EDUCATION AND EXPERIENCE: Education**: Graduation from a college or university with a bachelor’s degree in computer science, information technology, cybersecurity, or a closely related field and maintain continuing education in threat detection, vulnerability management, and SOC operations; and **Experience:** Considerable employment in security operations, cybersecurity engineering, or systems administration, with demonstrated experience managing SOC tools, detection and response technologies, vulnerability management platforms (Qualys VMDR), and email security solutions such as Proofpoint as well as participate in cyber defense exercises, vendor technical training, and statewide security initiatives to ensure operational readiness and continuous improvement. **Or,** any combination of education and experience that shall be substantially equivalent to the above education and experience.**SPECIAL REQUIREMENTS:** Possession of one or more of the following certifications, or the ability to obtain within a reasonable period after appointment, and may be considered evidence of advanced technical competency: 1. Microsoft Certified: Security Operations Analyst Associate (SC-200) 2. GIAC Certified Incident Handler (GCIH) or GIAC Certified Intrusion Analyst (GCIA) 3. Qualys Certified Vulnerability Management Specialist (VMDR) 4. Proofpoint Certified Email Protection Administrator 5. CompTIA CySA+ (Cybersecurity Analyst) or CompTIA Security+ 6. GIAC Security Essentials (GSEC) or GIAC Enterprise Defender (GCED) 7. Or equivalent IT security certification(s)
- J-18808-Ljbffr Ricouncil94
Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the Security Operations Engineer (DOA) in Warwick, RI vacancy
- ...mission‑critical programs across national security, defense, and public service delivery. Our work focuses on sustaining, operating, and improving essential government systems... ...a national scale. The Junior Security Engineer supports 24x7 enterprise cybersecurity...SuggestedMinimum wageFull timeContract workTemporary workWork experience placementRemote work
Maximus
Warwick, RI3 days ago $40 per hour
A cybersecurity company is seeking experienced professionals to evaluate AI-generated security content and solve technical problems. The position is available remotely, allowing work from various countries including the US. Candidates should have 2+ years in cybersecurity...SuggestedRemote jobHourly payFlexible hours$71.2k - $158.2k
...Job Description The Senior Federal Information Systems Security Engineer (ISSE) serves as a technical integrator responsible for ensuring... ...cybersecurity and interoperability standards. This role operates upstream of A&A, supporting project teams during system design...SuggestedContract workTemporary workWork experience placementRelocationFlexible hoursOracle
Providence, RI11 days ago- ...Maximus is a trusted federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on sustaining, operating, and improving essential government systems and services, with proven operational excellence...SuggestedMinimum wageFull timeContract workTemporary workWork experience placementRemote work
Maximus
Warwick, RI8 days ago $106.8k - $194.8k
Ernst & Young Oman is seeking a WAF Operations Solution Engineer to implement and manage Web Application Firewall solutions, safeguarding client... ...application traffic and collaborate with cross-functional teams on security measures. The ideal candidate has a Bachelor's degree in a...SuggestedRemote job$100k - $172.5k
...Learn more at Job Function: Technology Enterprise Strategy & Security Job Sub Function: Solution Architecture Job Category:... ...for the best talent for a Principal Product Security Engineer to be located in Danvers, MA or Raritan, NJ. Remote work options...Full timeTemporary workWork at officeLocal areaImmediate startRemote work3 days per weekJohnson & Johnson
Warwick, RI7 days ago$150k - $250k
...your family. World-class facilities and the technology you need to thrive - in our offices or yours. Job Summary The Security Engineer - Google collaborates with account and specialty teams to assess customer cybersecurity needs. They will be a customer-facing...Work experience placementWork at officeWorldwideFlexible hoursSHI GmbH
Providence, RI1 day ago$98.9k
...What you can expect The Security Engineer is responsible for security design and reviews across our products and services. The ideal candidate brings broad technical expertise and hands-on experience in end-to-end product security. In this role, you'll collaborate with...Work at officeRemote workZoom Corporation
Providence, RI1 day ago- ...International, Inc. is seeking a qualified individual to manage daily operations for Privilege Identity applications and oversee SIEM services... ...Diploma/GED, at least two years of experience in Information Security, and technical expertise in IAM modules, including Splunk,...
Honeywell
Providence, RI3 days ago $152.41k - $179.3k
...foster collaboration, connection, and alignment. Attendance is expected and fully supported. Coinbase Corporate Security (CorpSec) is seeking a Security Engineer to design, implement, and automate security solutions that protect corporate infrastructure, user devices,...Local areaCoinbase
Providence, RI5 days ago$54.4k - $57.99k
ASM Research, An Accenture Federal Services Company, is looking for a Customer Support & Billing Operations Specialist in Providence, Rhode Island. This role involves managing customer inquiries related to billing, performing data analysis, and collaborating with technical...$218.03k - $256.5k
...Management (IAM) program, housed within Security, is a cross-functional team that... ...within the IAM program, partnering with Engineering, IT, Platform, and business teams to architect... ...developed microservices. ~ Deep operational and architectural understanding of Identity...For contractorsLocal areaCoinbase
Providence, RI4 days ago$218.03k - $256.5k
...Attendance is expected and fully supported. Coinbase Infrastructure Security (InfraSec) is at the forefront of protecting the foundation of... ...and platform services. This role partners closely with engineering teams to design, implement, and automate cutting-edge security...Local areaCoinbase
Providence, RI5 days ago$40 per hour
A cybersecurity firm is seeking experienced professionals for a remote role focused on evaluating AI-generated security content. Candidates will assess accuracy, solve technical problems, and provide valuable feedback to enhance AI systems. This role requires 2+ years...Remote jobHourly pay- Worthington Enterprises, Inc. is seeking a Welding Engineer to oversee all facility welding operations. You will serve as the welding subject matter expert, ensuring compliance with safety practices and quality standards while driving process improvements. The ideal candidate...
$106.8k - $194.8k
WAF Operations Solution Engineer Location: Anywhere in Country Practice Description As a WAF Operations Solution Engineer, you will be responsible... ...of cybersecurity professionals to establish effective security measures that safeguard web applications and data. Job Summary...Summer holidayFlexible hours$186.07k - $218.9k
...collaboration, connection, and alignment. Attendance is expected and fully supported. The Application Security org at Coinbase is hiring for a Senior Offensive Security Engineer, Offensive Security. We are seeking a highly skilled and experienced Penetration Tester with a...Local areaCoinbase
Providence, RI5 days ago$40 per hour
A cybersecurity firm is seeking experienced professionals to evaluate AI-generated security content and solve technical security problems. This flexible position allows you to work remotely from various countries, including the US and Canada. Responsibilities include evaluating...Remote jobHourly payFlexible hours$40 per hour
A leading tech company is seeking cybersecurity professionals to evaluate AI-generated security content and solve technical problems. This role offers flexibility to choose projects and work from anywhere within the US. Candidates should have 2+ years in cybersecurity...Remote jobHourly pay$105k - $115k
GovCIO is seeking a remote Test Engineer responsible for designing and implementing testing methods to ensure product compliance. The ideal candidate will have substantial experience with manual, integration, and automated testing methodologies. This role requires expertise...Remote job- ...Information Security Engineer (DevOps/Containerization Focus) Anywhere Type: Contract Category: DevOps Industry: Financial... ...tooling, participates in security projects, and supports ongoing operations for the Information Security function. Due to client...Hourly payContract workLocal areaRemote work
Eliassen Group
Providence, RI5 days ago - Ernst & Young Oman is looking for an Application Security Engineer to implement and manage application development platforms while optimizing security tools. This role requires a focus on operational efficiency and embedding security measures within the development lifecycle...
$186.07k - $218.9k
...and alignment. Attendance is expected and fully supported. Security is a primary competency at Coinbase, and the Security Team keeps... ..., and other distributed ledger tech Partner with software engineering teams to advise on code and architecture for internal smart...Contract workLocal areaCoinbase
Providence, RI6 days ago$155.66k - $225.16k
...About the Team and Role: We’re hiring our first AI Automation Engineer to lead how we apply AI internally across the company. This... ...opportunity to shape how LLMs become embedded in our daily operations. Your goal will be to automate as much work as possible, increasing...Remote jobFull timeShift workQuora
Warwick, RI8 days ago- As the Principal Software Security Engineer you will be responsible for designing, building, and supporting our identity applications and APIs, primarily using Java. Primary responsibilities include: Analyzes, designs, programs, debugs, supports, and modifies software...
$124k - $155k
...professional in Providence, Rhode Island. The role involves troubleshooting, product demonstrations, and supporting technical aspects of security and IT systems. Candidates should have 4-7 years of experience, be proficient with LenelS2 OnGuard, and possess exceptional...$40 per hour
A cybersecurity company is seeking experienced professionals to evaluate AI-generated security content and solve technical problems. Candidates should have over 2 years of cybersecurity experience and strong writing skills. This remote position offers flexibility in choosing...Remote jobHourly pay$89k - $143.75k
...Sub Function: R&D Software/Systems Engineering Job Category: Scientific/Technology... ...Performing periodic risk assessment of security vulnerabilities in software for the... ...understanding security controls provided by the operating system. ~ Experience of working with...Full timeTemporary workWork at officeLocal areaRemote workNight shiftJohnson & Johnson
Warwick, RI6 days ago- ...NST Cyber Engineer Valiant is looking for a NST Cyber Engineer to join our team! This... ...establish command post networks, install, operate, integrate, troubleshoot communications,... ...maintenance, upgrades as needed, and security updates. Plans, implements, manages,...Full timeWork at officeMonday to Friday
Valiant Integrated Services
Johnston, RI1 day ago $110k
...Description We seek a highly motivated and experienced Application Security Engineer to join our growing security team. This role is highly... ..., required. Six (6) years or more experience process or operation management. Six (6) years or more experience Value Stream Mapping...Full time
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Security Operations Engineer (DOA). Be the first to apply!
Related searches
- travel operations Warwick, RI
- business operations intern Warwick, RI
- operations tech Warwick, RI
- loan operations Warwick, RI
- airport operations Warwick, RI
- data center operations technician Warwick, RI
- fund operations Warwick, RI
- pharmacy operations Warwick, RI
- senior vice president of operations Warwick, RI
- vice president of field operations Warwick, RI