Security Engineer II (Security Clearance)- Remote

Introduction

Are you passionate about designing and building security systems that enhance security operations of the organization? Are you eager to work with advanced SIEM technologies and cloud security solutions? Join our Infosec Global Security Operations team.

About the Team

Our team is dedicated to safeguarding Akamai's business by ensuring the security/integrity of its systems and infrastructure. We work with our product/platform teams, ensuring that Akamai's cybersecurity operations exceed the safety/security compliance requirements of our customers/stakeholders.

Job Responsibilities

As a Security Engineer, you will play a pivotal role in designing, implementing, and optimizing SIEM solutions to meet evolving business needs. You will build and manage SIEM workflows and connectors, ensuring seamless integration of various data sources. As a Security Engineer II, you will be responsible for:

• Developing, testing, and tuning Kibana Security detection rules, investigating Kibana Security alerts and documenting findings, scope, and recommended actions
• Analyzing telemetry across identity, endpoint, network, and cloud data sources
• Improving alert fidelity through tuning, exception management, and rule lifecycle maintenance
• Mapping detection logic to MITRE ATT&CK and maintaining investigation guidance
• Building dashboards, saved searches, and queries to support investigations and operational visibility
• Partnering with SecOps, IR, IAM, cloud, and infrastructure teams to improve detection coverage and response quality
• Identifying data quality gaps, field mapping issues, and logging deficiencies that affect detection quality
• Utilizing scripting languages like Python, Bash, JavaScript, or PowerShell

Requirements

To be successful in this role you will:

• Have 5 years of experience in security operations, detection engineering, threat detection, or incident response
• Have experience with Elastic Security / Kibana or a similar SIEM platform
• Demonstrate experience writing and tuning detections using KQL, EQL, ES|QL, SPL, or similar query languages
• Possess knowledge of common log sources such as authentication, endpoint, network, and cloud audit logs
• Have familiarity with cloud security concepts, especially AWS
• Have an understanding of MITRE ATT&CK, alert triage, and false positive reduction
• Have working knowledge of scripting in Python or Bash
• Have an Active Secret Security Clearance

Work Environment

FlexBase, Akamai's Global Flexible Working Program, is based on the principle