Back to jobs
Security Operations Engineer
External company
himalayasremotefull-time
SIEMSecurity OperationsKubernetesLinuxPythonBashIncident ResponseCloud Security
Job description
About Alpaca
Alpaca is a US-headquartered self-clearing broker-dealer and brokerage infrastructure for stocks, ETFs, options, crypto, fixed income, 24/5 trading, and more. Our recent Series D funding round brought our total investment to over $320 million. We serve hundreds of financial institutions across 40 countries with our institutional-grade APIs, totalling over 9 million brokerage accounts.
Your Role
We are seeking a Security Operations Engineer to mature Alpaca's day-to-day security operations. This role will be responsible for managing our third-party SOC relationship, operating and tuning our on-prem SIEM, and acting as a critical bridge between IT Helpdesk and the Security team.
Things You Get To Do:
Security Operations and Detection Engineering:
- Own the relationship with our managed SOC, including alert quality, escalation workflows, SLAs, runbooks, and continuous improvement of detection coverage.
- Operate and maintain our SIEM, including log onboarding, parsing, normalization, correlation rules, alert tuning.
- Ensure critical systems generate the right security telemetry across endpoints, identity providers, network devices, SaaS tools, and cloud platforms.
- Continuously refine detection logic based on threat intelligence, SOC feedback, and emerging attack techniques.
Incident Response & Metrics:
- Assist with security incidents, working with IT, Engineering, and external partners to contain, eradicate, and recover.
- Develop, maintain, and improve incident response playbooks and escalation paths.
- Track and report on key security metrics: alert volumes, false positive rates, MTTD, MTTR, SOC performance.
Must-Haves:
- 3+ years of experience in Security Operations roles.
- Hands-on experience operating and tuning a SIEM.
- Hands-on experience maintaining Kubernetes clusters.
- Scripting or automation experience (Python, Bash).
- Strong incident response and alert investigation skills.
Benefits: Competitive Salary & Stock Options, Health Benefits, $500 home-office setup, $150/month stipend.
Alpaca is a US-headquartered self-clearing broker-dealer and brokerage infrastructure for stocks, ETFs, options, crypto, fixed income, 24/5 trading, and more. Our recent Series D funding round brought our total investment to over $320 million. We serve hundreds of financial institutions across 40 countries with our institutional-grade APIs, totalling over 9 million brokerage accounts.
Your Role
We are seeking a Security Operations Engineer to mature Alpaca's day-to-day security operations. This role will be responsible for managing our third-party SOC relationship, operating and tuning our on-prem SIEM, and acting as a critical bridge between IT Helpdesk and the Security team.
Things You Get To Do:
Security Operations and Detection Engineering:
- Own the relationship with our managed SOC, including alert quality, escalation workflows, SLAs, runbooks, and continuous improvement of detection coverage.
- Operate and maintain our SIEM, including log onboarding, parsing, normalization, correlation rules, alert tuning.
- Ensure critical systems generate the right security telemetry across endpoints, identity providers, network devices, SaaS tools, and cloud platforms.
- Continuously refine detection logic based on threat intelligence, SOC feedback, and emerging attack techniques.
Incident Response & Metrics:
- Assist with security incidents, working with IT, Engineering, and external partners to contain, eradicate, and recover.
- Develop, maintain, and improve incident response playbooks and escalation paths.
- Track and report on key security metrics: alert volumes, false positive rates, MTTD, MTTR, SOC performance.
Must-Haves:
- 3+ years of experience in Security Operations roles.
- Hands-on experience operating and tuning a SIEM.
- Hands-on experience maintaining Kubernetes clusters.
- Scripting or automation experience (Python, Bash).
- Strong incident response and alert investigation skills.
Benefits: Competitive Salary & Stock Options, Health Benefits, $500 home-office setup, $150/month stipend.
Posted 17/04/2026
Similar jobs
External
himalayas
QA Automation Engineer
Worldwide remote full-time
PythonSeleniumAppiumPostman +12 more
Today
via himalayasExternal
himalayas
Senior Fullstack Engineer (100% remote Worldwide)
Worldwide remote full-time
ReactTypeScriptJavaScriptNode.js +12 more
Today
via himalayasExternal
himalayas
Senior Fullstack Engineer
Worldwide remote full-time
JavaScriptTypeScriptReactNode.js +11 more
Today
via himalayas