🛠 Tech Stack

💼 About This Role

You'll own the operational health and continuous improvement of Aurora's enterprise security platform stack, including EDR/XDR, SIEM, and IAM. Your core impact will be ensuring each tool is deeply configured and continuously tuned to deliver reliable detection and response. This role is for an elite security operator who finds satisfaction in mastering security platforms and hunting down threats before they surface.

🎯 What You'll Do

• Own configuration and tuning of EDR/XDR, SIEM, DLP, IAM/IGA, and other platforms.
• Develop detection rules and correlation logic to reduce noise and improve fidelity.
• Conduct proactive threat hunting across security telemetry.
• Serve as escalation point for complex platform issues and detection failures.
• Participate in on-call rotation and lead incident investigations.

📋 Requirements

• 12+ years in enterprise security operations or SOC engineering.
• Expert-level proficiency with at least two enterprise security platforms (e.g., CrowdStrike, Splunk).
• Ability to tune and optimize security platforms beyond default configurations.
• Strong log analysis and threat hunting skills with hypothesis-driven investigation.

✨ Nice to Have

• Scripting in Python or Bash for automation.
• Familiarity with MITRE ATT&CK for detection gap analysis.
• AWS security telemetry experience (CloudTrail, GuardDuty).

🎁 Benefits & Perks

• 💰 Competitive base salary ($189k-$274k).
• 📈 Annual bonus and equity compensation.
• 🏥 Comprehensive benefits package.
• 🚀 Opportunity to shape autonomous vehicle security.

📨 Hiring Process

Estimated timeline: 3-4 weeks · AI estimate

1. 1Recruiter Call· 30 min
2. 2Technical Interview· 60 min
3. 3Security Platform Hands-on· 60 min
4. 4Hiring Manager· 45 min
5. 5Offer· 1 week