Principal, SOC Detection Engineer

Job Overview :

LPL Financial is seeking a Principal, SOC Detection Engineer focusing on enhancing security event detection and response. This position is a hands-on technical position and will report to VP, Security Operations Center.

The role should have firsthand experience supporting Security Operations Center and hands on experience working with security operations, security engineering, cloud platforms, IT infrastructure. The candidate should possess excellent leadership qualities in using solid judgement with decision making and a high level of technical acumen across Information Security domains.

In this role, the Principal SOC Detection Engineer will contribute to a team that will address alignment of Use Cases and detection coverage across various Cyber Security platforms. The position demands a strong background in Cybersecurity tools, hands-on programming skills, and the ability to analyze, design, and develop new solutions quickly. The candidate will also need to evangelize and envision new proof of concepts, implementation strategies, and integrations. A combination of technical skills, security knowledge, and strong problem-solving abilities is essential for success in this position.

Responsibilities :

The primary focus is design, build, and refine systems and processes used to detect malicious or unauthorized activities automatically

Develop and maintain detection rules and alerts through design, development and enhancement

The position demands a strong background in Cybersecurity tools, hands-on programming skills, and the ability to analyze, design, and develop new solutions quickly

Design and implement detection use-cases and workflows for security operations center

Collaborate with cross functional teams to design and improve security processes

Analyze security logs and systems for anomalies

Conduct threat hunting activities to identify potential threats

Identify detection coverage gaps and collaborate with stakeholders to gain coverage

Implement data models and standards to align with organization

Collaborate with cross functional teams to investigate incidents

Monitor and troubleshoot automated security systems to ensure they are functioning effectively

Create and maintain detailed runbooks and procedures covering security detections and response

Collaborate with Security Analysts to tune and enhance cybersecurity solutions and technologies to address cyber related threats

Train and mentor junior security team members on automated processes and techniques

Continuously evaluate and improve security detection use cases to expand security posture, increase efficiency and effectiveness

Requirements :

Bachelor's degree in computer science, information security or technology related field

7+ years of related experience in information security, specifically hands on experience working in a 24x7 Security Operations Center

5+ years of hands-on experience with SIEM platform threat intelligence platforms, security automation and orchestration solutions, intrusion detection and prevention systems (IDS / IPS), Endpoint Detection Solutions, DLP and other network and endpoint monitoring tools

Proficiency in security frameworks such as MITRE

Core Competencies :

Strong analytical and problem-solving skills are required

Strong communication skills, both written and verbal

Preferences :

Relevant technical and security certifications such as CISSP, GIAC certificates

LI-Hybrid

Pay Range :

143,100-$238,500 / yearActual base salary varies based on factors, including but not limited to, relevant skill, prior experience, education, base salary of internal peers, demonstrated performance, and geographic location. Additionally, LPL Total Rewards package is highly competitive, designed to support your success at work, at home, and at play – such as 401K matching, health benefits, employee stock options, paid time off, volunteer time off, and more. Your recruiter will be happy to discuss all that LPL has to offer!

Company Overview :

LPL Financial Holdings Inc. (Nasdaq : LPLA) was founded on the principle that the firm should work for advisors and institutions, and not the other way around. Today, LPL is a leader in the markets we serve, serving more than 23,000 financial advisors, including advisors at approximately 1,000 institutions and at approximately 580 registered investment advisor ("RIA") firms nationwide. We are steadfast in our commitment to the advisor-mediated model and the belief that Americans deserve access to personalized guidance from a financial professional.

At LPL, independence means that advisors and institution leaders have the freedom they deserve to choose the business model, services, and technology resources that allow them to run a thriving business. They have the flexibility to do business their way. And they have the freedom to manage their client relationships, because they know their clients best. Simply put, we take care of our advisors and institutions, so they can take care of their clients.

Join LPL Financial : Where Your Potential Meets Opportunity

At LPL Financial, we believe that everyone deserves objective financial guidance. As the nation’s leading independent broker-dealer, we offer an integrated platform of cutting-edge technology, brokerage, and investment advisor services.