Senior Security Operations Engineer

Samsung SDS America (SDSA) serves as the U.S. technology and innovation hub for Samsungs global enterprise solutions, delivering secure, scalable, and highperformance IT services that support some of the worlds most complex business environments. As SDSA continues to expand its cloud, mobility, analytics, and cybersecurity capabilities, maintaining a resilient security operations foundation is essential to protecting the companys digital assets and ensuring uninterrupted service delivery. This need for operational rigor and realtime threat defense creates the environment in which the Security Operations Engineer plays a critical role.

TheSenior Security Operations Engineerleadsprojectfocused initiativesthat advance SDSAs security posture, rather than handling routine ticket resolution. The engineer drives endtoend delivery of securitycontrol automation, threatmanagement platforms, and governance frameworks while maintaining daytoday operational integrity. Core responsibilities spanstrategic program leadership, realtime threat detection & response, and securitycontrol optimization.

Responsibilities:

• Lead SecurityOperations Projects - Own the full lifecycle of multidisciplinary security projects (e.g., SIEM migration, DLP automation, SecureWebGateway hardening), from requirements gathering and stakeholder alignment to design, implementation, testing, and postdeployment review.
• Architect & Enforce Control Governance - Develop and maintain detailed runbooks, playbooks, and SOPs that codify securitycontrol configuration, changecontrol processes, and compliance checkpoints across firewalls, IDS/IPS, antimalware, and datalossprevention solutions.
• Direct RealTime Threat Management - Oversee the configuration, tuning, and integration of SIEM, DLP, and SecureWebGateway telemetry; design correlation rules that reduce false positives by>30% and trigger automated containment workflows via SOAR platforms.
• Participate in Incident Response Programs Play a key SME role to identify and drive incident response resolutions.
• Collaborate with Security Engineering & Architecture Teams - Partner with engineers to embed vulnerabilitymanagement findings into patchprioritization pipelines; advise architects on control selection that satisfies regulatory requirements (e.g., GDPR, CCPA, NIST80053).
• Drive Continuous Improvement - Lead changemanagement initiatives that modernize legacy security tools, introduce security orchestration (e.g., Ansible, Terraform), and enforce configurationascode standards.
• Vendor & Policy Management - Assist GRC in technology review of 3rd party and partners

Requirements

• 8+years in enterprise information security with a proven track record of deliveringsecurityoperations projects(platform migrations, automation initiatives).
• Handson knowledge of firewalls, IDS/IPS, antimalware, VPN, DLP, SIEM (Splunk, QRadar), vulnerability scanners (Nessus/Qualys), and cloud security controls (AWS GuardDuty, Azure Sentinel).
• Designed SOAR playbooks; scripted in Python/PowerShell; implemented IaC for security controls.
• Proficient in the implementation, configuration, & administration of Windows servers, Linux, VM, and Container systems and hardening.
• Demonstrated ability to manage scope, schedule, risk, and stakeholder communication for security programs.
• Translate legal/regulatory mandates (NIST, ISO27001) into actionable security controls and governance artifacts.
• The demonstrated ability to work effectively in a collaborative team environment or as an individual contributor.
• Experience managing information security controls, specifically monitoring, troubleshooting, maintaining, and modernization of mission critical networks and information systems.
• Must be eligible to work in the US for any employer without restrictions.
• Must be willing and able to work onsite in San Jose, CA.

Preferred Qualifications:

• Experience with project management, vendor management, and policy development.
• Hands-on experience with Netskope (NG-SWG, CASB, DLP, ZTNA, RBI, Cloud Firewall) or similar.
• Demonstrated ability in deploying, configuring, and operationalizing Darktrace threat detection platform.
• Prior experience in leading or being part of a security incident response team and proven experience in using SIEM and network DLP.
• Ability to work in a small, collaborative team environment and as an individual contributor.
• Bachelors Degree in relevant field is strongly preferred.

Benefits

Samsung SDSA offers a comprehensive suite of programs to support our employees:

• Top-notch medical, dental, vision and prescription coverage
• Wellness program
• Parental leave
• 401K match and savings plan
• Flexible spending accounts
• Life insurance
• Paid Holidays
• Paid Time off
• Additional benefits

Samsung SDS America, Inc. is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity or expression, national origin, disability, status as a protected veteran, marital status, genetic information, medical condition, or any other characteristic protected by law.

We are committed to providing reasonable accommodations to participate in the job application or interview process for candidates with disabilities. Please let your recruiter know if you need an accommodation at any point during the interview process.

The base pay range for this role depends on appropriate skills, experience, and technical level. Career Level 3 base salary is USD $150,000 - $220,000.

Individual base pay depends on various factors, in addition to primary work location, such as complexity and responsibility of role, job duties/requirements, and relevant experience and skills.

Certain roles are eligible for additional rewards, including annual bonus. U.S.-based employees have access to medical, dental, and vision insurance, a 401(k) plan and company match, short-term and long-term disability coverage, basic life insurance, and wellbeing benefits, among others. U.S.-based employees also receive, per calendar year, up to 10 scheduled paid holidays, and Paid Time Off.