Security Engineer
$125k - $155kReal Time Technologies, LLC
Security Operations & Production Security Engineer
Role Summary
We are looking for a mid-level Security Operations & Production Security Engineer to support Realtime’s growing security, architecture, and production operation's needs. This role will bridge security operations, detection engineering, incident response, cloud/identity security, and production readiness.
The ideal candidate is hands-on, adaptable, and comfortable wearing multiple hats in a small team. This person will help operate and improve our security monitoring stack, support incident response, tune detections, maintain runbooks, validate security controls, coordinate with managed SOC/MDR partners, and help ensure systems are secure, observable, supportable, and ready for Day 2 operations.
This role is best suited for someone who has strong SOC experience but wants to grow into security engineering, production support, automation, and architecture-adjacent responsibilities.
Why This Role Is Needed
Realtime’s security team is small and needs someone who can sit between the Security Architect and the Junior Analyst. The Security Architect should stay focused on architecture, governance, risk, security strategy, control design, and executive-level decision support. The Junior Analyst can help with monitoring, ticketing, and basic triage.
This role fills the operational gap by owning the hands-on security engineering and production security work: detection tuning, incident coordination, tool administration, Jira/Slack workflow hygiene, runbooks, dashboards, Identity management, evidence collection, and day-to-day security operations.
Key Responsibilities
Security Operations & Monitoring
- Monitor and triage alerts across Microsoft Defender, Sentinel, Huntress/MDR, Wiz, Datadog, Jira, and Slack channels.
- Validate alert severity, business impact, affected assets, containment status, and escalation requirements.
- Coordinate security events from initial triage through containment, documentation, closure, and post-incident follow-up.
- Support daily dashboard review, security ticket queues, alert quality checks, and operational reporting.
Detection Engineering & Tuning
- Develop, tune, and maintain detection logic in Huntress, Defender, KQL, and related tools.
- Reduce false positives and alert noise by reviewing recurring detections, suppression logic, enrichment opportunities, and escalation criteria.
- Help build and improve alert runbooks, investigation workflows, and playbooks for phishing, malware, suspicious sign-ins, cloud exposure, endpoint events, and account compromise.
- Support basic SOAR/automation efforts using Logic Apps, playbooks, webhooks, or other workflow tools.
Incident Response & Production Security
- Assist with incident response for endpoint, identity, cloud, email, and suspicious activity events.
- Coordinate containment actions such as endpoint isolation, identity reset, access revocation, escalation to Tier 2/Tier 3 SOC, and follow-up remediation.
- Maintain incident timelines, evidence, RCA notes, lessons learned, and closure documentation.
- Help ensure P1/P2 incidents have clear communication, structured Slack threads, linked Jira tickets, and documented executive summaries when needed.
Cloud, Identity & Endpoint Security
- Support security operations across Microsoft Defender, Microsoft Entra ID, Microsoft 365, Azure, endpoint protection, and cloud risk tools.
- Help review suspicious sign-ins, MFA/SSO issues, risky users, privileged account activity, and access control gaps.
- Assist with cloud exposure triage from Wiz or similar tools, including severity validation, ticket routing, and remediation tracking.
- Support least-privilege reviews, conditional access validation, endpoint security posture, and security control checks.
Production Readiness & Change Support
- Support the Day 0 / Day 1 / Day 2 operating model by helping confirm that new systems and changes are ready for production from a security operations perspective.
- Review or help prepare monitoring requirements, alert runbooks, support escalation paths, rollback considerations, security validation evidence, and operational handoff materials.
- Work with architecture, engineering, and operations teams to ensure production changes are documented, traceable, and supportable.
- Help maintain CMDB/Jira asset relationships, monitoring links, runbook references, and security control mappings where needed. Realtime’s configuration management materials specifically call out CMDB accuracy, monitoring coverage, alert routing, runbook linkage, support RACI, SLA/SLO mapping, and operational acceptance as part of Day 2 readiness.
- Documentation, Metrics & Continuous Improvement
- Create and maintain security runbooks, knowledge base articles, investigation guides, escalation procedures, and incident templates.
- Track and report operational metrics such as alert volume, false positives, SLA breaches, time to acknowledge, time to isolate, time to contain, and closure quality.
- Identify recurring issues and recommend improvements to detections, workflows, tooling, dashboards, and team processes.
- Help mentor the Junior Analyst by reviewing tickets, improving triage quality, and sharing investigation techniques.
Required Qualifications
- 3–5 years of experience in SOC operations, security operations, production support, security engineering, or a similar hands-on cybersecurity role.
- Experience with Microsoft security tools such as Microsoft Defender, Microsoft Sentinel, Microsoft Entra ID, Microsoft 365 security, or Azure security services.
- Ability to investigate alerts using SIEM/EDR data, KQL, logs, endpoint telemetry, identity logs, and cloud signals.
- Experience with incident triage, phishing investigations, malware alerts, suspicious sign-ins, endpoint events, and escalation workflows.
- Basic understanding of cloud security, identity security, MFA, SSO, conditional access, endpoint protection, and vulnerability/cloud exposure management.
- Ability to write clear documentation, incident notes, runbooks, ticket updates, and executive-ready summaries.
- Comfortable working in a small team where priorities change, and the person may need to support operations, engineering, documentation, and coordination.
- Strong communication skills and ability to work across Slack, Jira, Teams, security tools, managed SOC providers, engineers, and business stakeholders.
Preferred Qualifications:
- Experience with Identity management, Defender, KQL, Logic Apps, SOAR/playbook automation, or detection tuning.
- Experience with tools such as Huntress, Wiz, Datadog, Jira Service Management, Slack, OpenIAM
- Security+, Microsoft SC-200, CySA+, GCIH, Microsoft AZ-500, CCSP, CISSP, or similar certifications.
- Exposure to ITIL, change management, ARB/CAB processes, CMDB, production readiness, or operational handoff.
- Basic scripting or automation experience with PowerShell, Python, Logic Apps, APIs, or workflow automation.
- Experience working in an MSSP, MDR, SOC, or 24/7 operations environment.
Salary Range: $125,000 -155,000 annually , plus a target 5% annual performance bonus which will be based on the employee's and company's performance. Final compensation will be based on the candidate's experience and qualifications.
Our pay structure considers various geographical markets within the United States. The base salary for this role reflects the typical expected earnings. However, the final compensation package is determined by several factors, such as your location, job-specific expertise, skills, experience, and other relevant job-related considerations.
What We Offer:
A unique opportunity to shape the journey of realtime
Working within a rapidly growing, game-changing business
Remote, flexible working options
Competitive compensation
Generous STI and LTI provisions
Health, Dental and Vision Insurance
Paid Annual Leave
Paid Sick Leave
401K, and more
Realtime is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate on the basis of race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or any other protected status.
Application Window : Applications are accepted on an ongoing, continuous basis until the position is filled.$80k
...Information Security Engineer Description SUKU is seeking an Information Security Engineer specializing in web application security and hands-on security architecture for our agile blockchain startup. You'll work closely with our CTO...SuggestedImmediate startRemote workTrial periodFlexible hours- ...High level of knowledge in cloud security. High level of expertise in operating security tools: Firewall & NAC: Palo Alto (Perimeter & Datacenter), Counteract, Endpoint Management: SCCM, Microsoft Intune, Crowdstrike, Qualys, IAM & MFA: Azure Conditional...Suggested
$85k - $105k
...We are seeking an experienced commercial Electronic Security Systems Field Engineer to join our federal team. This is a remote / virtual role with the ability to travel extensively to support project needs for various Department of Defense and other federal government...SuggestedFor subcontractorWork at officeLocal areaRemote workWorldwide- ...Network Security Engineer The Network Security Engineer designs, implements, and operates secure network connectivity across on-premises, cloud, and remote environments. The role emphasizes Zero Trust Network Access (ZTNA), Private Access, and SASE architectures in...SuggestedRemote work
- ...Title : Network Security Engineer Location : Miami, FL Hybrid Need local 12+ Months Contract Job Description - Specialization: Migration from On-Premise CheckPoint to Fortinet Cloud (Azure) # Position Description We are looking for a...SuggestedContract workLocal areaRemote work
- ...Title: Sr. IT Security Engineer Location: Miami, US- 5 days on site in Miami office Palo Alto is a must Someone that came from Windows Admin background and moved into Security Plus- AD, Azure Reporting: Sr. Manager, IT Security Seasoned...Work experience placementWork at office
- ...Information System Security Engineer III (ISSE III) We are seeking an Information System Security Engineer III (ISSE III) to support a Navy cybersecurity program. The selected candidate will provide advanced cybersecurity engineering support, capture and refine security...Contract workTemporary workWork at office
- (Hiring) Information Systems Security Engineer We are seeking an Information Systems Security Engineer to join our team! You will install and repair alarm wiring and equipment. Responsibilities: Install and program new alarm and security systems Troubleshoot...
- ...operational expertise with the power of artificial intelligence to make online home selling and buying radically simple. Our Security Engineering team builds intelligent systems that protect Opendoor and our customers while enabling unprecedented engineering velocity....Work at officeMonday to Friday
- ...Taurean is a mission-driven defensive cyber operations firm delivering security engineering, risk management, and compliance execution for federal and regulated environments. Our teams protect operational systems, sensitive data, and high-assurance environments through...Full timeWeekend work
- ...federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on... ...that matter at a national scale. The Junior Security Engineer supports 24x7 enterprise cybersecurity operations by monitoring...Minimum wageFull timeContract workTemporary workWork experience placementRemote work
- ...Job Title Cloud Security Engineer Location Doral, FL 33122 US (Primary) Category Intelligence Job Type Full-Time Career Level Staff Education Bachelor's Degree Travel Security Clearance Required Secret Job Description Prescient...Full timeContract work
$10k
...Ramp Security Engineering Role The Security Engineering team helps make Ramp the most secure place for our customers to collect, manage, and put to work their business' financial information. Our work centers in three areas: Ramp builds products with an eye for...Full timeWork at officeRemote workHome officeRelocation packageFlexible hours$165k - $175k
...Overview The IT Security Team is looking for a seasoned professional to support a passionate, innovative, and results driven team. The Senior Security Operations Center (SOC) Cloud Engineer is responsible for monitoring, detecting, and responding to threats in...Hourly payWork experience placementLocal areaRemote workNight shift$127.5k - $236.5k
...The successful candidate will support a highly motivated engineering team in defining, designing, implementing, documenting, testing and sustaining Zero Trust Architecture (ZTA) security solutions on National Security Systems, in a DoD environment, using Model-Based Systems...Local areaRemote workFlexible hours$106k - $170k
...developing excellence. We collaborate to find the best answers for our customers and for. Position Overview The Blackstone Security Operations - Engineering team is growing to support new cross‑functional security needs. The Associate Security Engineer is responsible for...Work at officeLocal areaFlexible hours- Cacheflow is seeking an experienced Security Engineer to operate the identity system and run the security program in Miami. This role involves building and managing security automation systems, access governance, and endpoint management while fostering a drive for improvement...Work at office
$106k - $170k
Blackstone is seeking an Associate Security Engineer in Miami, Florida to provide SIEM and security platform engineering support. Candidates should have strong incident response knowledge and hands-on experience with SIEM technology. The role involves developing automation...- ...end-to-end online experience that has already helped thousands of people and we’re just getting started. About The Role Our Security Engineering team builds intelligent systems that protect Opendoor and our customers while enabling unprecedented engineering velocity. We...Work at officeMonday to FridayShift work
- ...Job Description Job Description Position: Cloud Security Engineer LCAT: Mid Location: SOUTHCOM HQ, Doral, FL / Off-site Office: U.S. SOUTHERN Command J2 Required clearance: Secret Required education: Bachelor's degree in Cybersecurity, Information...Temporary workWork at officeFlexible hours
- ...Time Off - (15 Days; prorated before 1st year) Parental Leave Paid holidays Position Summary The development, security, and operations (DevSecOps) Engineer ensures that security is a core part of the software development life cycle (SDLC) by integrating security...Work at officeLocal areaImmediate start
- Dupont-Registry located in Miami, Florida is seeking a DevSecOps Engineer. This role involves integrating security practices into the software development lifecycle, ensuring systems are secure and scalable. The ideal candidate will have experience with DevOps tools and...Permanent employmentFull timeWork at office
- CARNIVAL CRUISE LINES is hiring a Sr. Application Security Engineer to implement and maintain software security capabilities for their global brands. This remote position will use your expertise in SAST, DAST, and cloud infrastructure to enhance security practices. The...Remote work
- ...Security Architect Miami, FL About Hut 8 Imagine the ultimate destination for those who want to work at the cutting edge of... ...About You ~ Bachelor's degree in Computer Science, Computer Engineering, Information Technology, Cybersecurity, or a related field (or...Temporary workWork at office
$115k - $135k
A leading international logistics company is looking for a Network Operations Technician in Miami, Florida. In this role, you will support and modernize networking infrastructure, ensuring 24/7 uptime while collaborating with global IT teams. Candidates should possess strong...$102.17k
...clients across the country. Job Description Join the Trinnex Security Team as a Senior Cyber Security Analyst, where you will... ...resilient against evolving threats. You will work closely with engineering and development teams to safeguard systems that communities...H1b- BunkerSec Corp. seeks a Penetration Tester / Ethical Hacker to assess security weaknesses in Miami, FL. The role demands hands-on experience with testing tools and methodologies, providing actionable recommendations based on findings. As a full-time position, you will...Full time
- ...site Type: Full Time Start: Immediate Salary: Based on competencies About BunkerSec.com BunkerSec is a leading provider of Cyber Security Solutions , dedicated to protecting enterprises from digital threats. We are looking for a skilled Penetration Tester / Ethical...Full timeImmediate start
$95.86k - $208.27k
...hacking certifications not required but preferred; GIAC Web Application Penetration Tester (GWAPT), Council for Registered Ethical Security Testers (CREST), Offensive Security Web Expert (OSWE), Offensive Security Web Assessor (OSWA) Ability to travel as required Must...H1bLocal area- ...Management Analyst (AI Training) About the Role We're partnering with leading AI research labs to build the next generation of security-aware AI systems - and we need practitioners who know what vulnerability management actually looks like in the real world. This...Hourly payOngoing contractContract workFreelanceRemote workFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Security Engineer. Be the first to apply!
- network security engineer Miami, FL
- senior security operations engineer Miami, FL
- security infrastructure engineer Miami, FL
- senior application security engineer Miami, FL
- information technology security engineer Miami, FL
- security software engineer Miami, FL
- sr information security engineer Miami, FL
- aws cloud security engineer Miami, FL
- senior cloud security engineer Miami, FL
- IT security engineer Miami, FL



