Be the first to apply!

Security Engineer

H One Private Limited external url   Colombo • Full-time

We are looking for a skilled and motivated Security Engineer to join our cybersecurity team and strengthen our organization’s security operations.

In this role, you will be responsible for monitoring, analyzing, and responding to security incidents using advanced SIEM and SOAR platforms. You will play a key part in identifying potential threats, supporting incident response, and enhancing overall security visibility across systems.

Job Responsibilities:

  • Monitor, analyze, and respond to security events using Microsoft Sentinel, Microsoft Defender XDR.
  • Identify, investigate, and escalate potential threats through log analysis and real-time alert monitoring.
  • Lead or support incident response activities, including containment, mitigation, documentation, and recommendations.
  • Tune and optimize SIEM configurations to improve detection accuracy and visibility.
  • Ensure proper log ingestion, data enrichment, and correlation across business units and platforms.
  • Implement and maintain cloud security best practices and design patterns.
  • Stay updated on emerging threats and integrate relevant threat intelligence feeds.
  • Generate clear security reports, highlight trends, and provide improvement insights.
  • Collaborate with cross-functional teams to apply security best practices and support SOC operations with advanced queries and automation via SIEM/SOAR.

Qualifications & Skills:

  • Bachelor's degree in CS/IT or equivalent experience
  • 3+ years as a SOC Analyst or Security Engineer
  • 3+ years hands-on SIEM/SOAR engineering
  • Experience with Microsoft Sentinel, LogRhythm, Splunk or any other SIEM platform
  • Strong analytical, problem-solving, and communication skills
  • Ability to work independently and collaborate with teams

Preferred

  • Microsoft security or Azure certifications (SC / AZ series) CompTIA Network+ or Security+
  • Experience with SOAR, cloud security (Azure/AWS/GCP), and scripting (Python/PowerShell/Bash)
  • Knowledge of log ingestion, KQL, Microsoft Defender tools
  • Familiarity with Linux/Windows servers and common databases

If you are passionate about cybersecurity, threat detection, and continuous improvement in security operations, we invite you to be part of our journey.

Job poster for Security Engineer