Senior Security Engineer (Remote - North Carolina, Florida, or South Carolina preferred)
Indexed description
Overview
We are seeking a Senior Security Engineer to protect enterprise systems, data, and cloud environments from evolving cyber threats. This role focuses on advanced security engineering, threat detection, and AI-driven security capabilities. You will serve as a senior technical resource, leading complex investigations and improving detection and response through automation and AI.
Why This Role
This role offers the opportunity to shape next-generation security capabilities, including AI-driven detection, automation, and cloud security, while working on high-impact enterprise challenges.
This is a remote role that can sit anywhere in US (near Arch office preferred).
Key Responsibilities
- Design, build, and deploy agentic AI workflows and intelligent autonomous playbooks to automate Tier-1/2 alert triage, context enrichment, and incident response.
- Develop and tune complex detection logic across SIEM, EDR/XDR, and cloud platforms, focusing on behavioral analytics and anomaly detection.
- Utilize Python to build custom security tools, integrate disparate security APIs, and maintain high-quality, reusable codebases for security orchestration (SOAR).
- Lead threat hunting initiatives and serve as a Tier-3 escalation resource for complex, high-severity security incidents.
- Analyze attacker tactics, techniques, and procedures (TTPs) to map coverage against the MITRE ATT&CK framework and proactively close gaps.
- Secure cloud environments (AWS, Azure, or GCP), with a specific focus on auditing, monitoring, and protecting production AI/LLM pipelines and workloads.
- Mentor junior team members, conduct code reviews for automation scripts, and promote robust software engineering best practices within the security team.
- 7+ years of cybersecurity experience with a focus on security or detection engineering
- 3+ years in a Sr. Security Engineer role
- Deep technical knowledge of incident response, threat hunting, and adversary TTPs.
- Experience implementing and managing detection logic across enterprise SIEM, EDR/XDR, or cloud-native security tools.
- Experience securing and monitoring cloud infrastructure (AWS, Azure, or GCP).
- Demonstrated experience building functional tools in Python/Powershell, interacting with REST APIs, and writing clean, structured code (experience with Git and CI/CD pipelines preferred).
- Bachelor’s degree in Computer Science, Cybersecurity, or Engineering.
- Practical understanding of building or implementing LLM-based agents, prompt engineering, and integrating AI models into automated workflows and custom API integrations.
- Familiarity with AI/LLM-specific security vulnerabilities (e.g., OWASP Top 10 for LLMs, prompt injection, data poisoning, model evasion).
- Experience with SIEM, EDR/XDR, SOAR, or identity security platforms
- Advanced certifications (e.g., CISSP, GIAC GCIA/GCIH, or cloud security certifications).
- Master’s degree in Computer Science, Cybersecurity, IT Management with an emphasis on AI/Automation.
Do you like solving complex business problems, working with talented colleagues and have an innovative mindset? Arch may be a great fit for you. If this job isn’t the right fit but you’re interested in working for Arch, create a job alert! Simply create an account and opt in to receive emails when we have job openings that meet your criteria. Join our talent community to share your preferences directly with Arch’s Talent Acquisition team.
10200 Arch Capital Services LLC
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search