SecOps Engineer (Google SecOps)

Summary

As a Google Cloud Partner, HanaByte delivers secure, scalable, and innovative cloud solutions to a diverse range of clients. Our pack of certified experts are dedicated to guiding organizations through their cloud journey—from strategy and migration to optimization and ongoing support. By leveraging cutting-edge technology and best-in-class methodologies, we help businesses maximize their investment in the cloud and stay ahead of evolving security threats.

We are seeking a Google SecOps / SIEM Engineer to join our growing Google Cloud and Security Operations practices. In this role, you will work closely with internal teams and clients to build, configure, and maintain highly secure, reliable, and scalable security solutions using GCP-native and third-party tools. Your main focus will be on implementing, configuring, and optimizing Security Information and Event Management (SIEM) solutions—primarily Google Chronicle and related integrations—to identify threats, detect anomalies, and streamline incident response. Additionally, you will help clients align their security posture with industry best practices, compliance standards, and GCP’s shared responsibility model.

Responsibilities

• Provide SIEM engineering services for clients who are migrating to or looking to adopt SIEM systems, primarily focused on Google SecOps (formerly known as Google Chronicle).
• Integrate multiple data sources from GCP services, on-premises systems, and third-party applications into the SIEM using cloud connectors and syslog feeds.
• Utilize Google SecOps UDM and consult customers in data transformation for SIEM ingestion. This includes implementing custom parsers to transform logs into structured information.
• Familiarity with log management and data routing tools such as Cribl.
• Automate routine security tasks using Infrastructure as Code (IaC), APIs, and serverless technologies, enhancing efficiency and reducing manual effort.
• Advise clients on security architecture design, specifically around GCP services (Compute Engine, GKE, Cloud Storage, etc.) to ensure compliance and resilience.
• Assist with developing and implementing security best practices aligned with frameworks like CIS Benchmarks, NIST 800-53, ISO 27001, PCI DSS, CMMC, and FedRAMP.
• Engage with clients to understand their security objectives, scope requirements, and business drivers.

Required Qualifications

• 2-5+ years of experience in Security Engineering, preference will be given to a background with a focus on SIEM engineering and Security Operations.
• Hands-on experience deploying, managing, or tuning SIEM platforms (e.g., Google SecOps / Chronicle, Splunk, QRadar, or Azure Sentinel) in production environments.
• Strong understanding of networking concepts, system administration, cloud-native security principles, and modern cyber-threat landscapes.
• Demonstrable proficiency with Google Cloud services, security tooling, and related APIs (e.g., Security Command Center, IAM, Cloud Logging, Cloud Functions).
• Certification in Google Cloud (e.g., Google Cloud Professional Cloud Security Engineer) or ability to gain the certification in a mutually discussed time frame.
• Security certifications such as CISSP, CCSP, CCSK, CEH, CISA, CISM, GSEC, etc. are advantageous.
• Ability to prioritize tasks effectively and handle multiple client engagements concurrently.

Required Education

• Bachelor’s degree, comparable military duty, or comparable work experience.