🛠 Tech Stack

💼 About This Role

You'll operate security controls for enterprise, cloud, and mission systems as part of Spire's security operations team. Your work will directly reduce time-to-detect and time-to-respond across the environment. This role offers hands-on technical authority across the entire security tooling stack.

🎯 What You'll Do

• Operate and improve SIEM platform, including log onboarding and detection content
• Serve as first responder for security incidents, from triage to post-incident review
• Manage vulnerability lifecycle across endpoints, servers, containers, and cloud
• Administer EDR tooling and investigate endpoint alerts for suspicious activity

📋 Requirements

• Five or more years of hands-on security operations experience
• SIEM platform experience in production, including detection content authoring
• Incident response experience as a technical lead during material events
• Cloud security knowledge in at least one major provider (AWS, Azure, GCP)

✨ Nice to Have

• Experience with NIST SP 800-171 or similar regulated frameworks
• Hands-on experience with AWS GovCloud or Microsoft 365 GCC High
• Scripting and automation skills in Python or PowerShell

🎁 Benefits & Perks

• 🏖️ Unlimited PTO
• 🏥 Health, dental, and vision insurance
• 💰 Equity grants
• 🧘 Wellness programs
• 📚 Professional development stipend

📨 Hiring Process

Estimated timeline: 2-3 weeks · AI estimate

1. 1Recruiter Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager Interview· 45 min