Think Beyond The Label Jobs

Mobile Think Beyond The Label Logo
Home View All Jobs (2,036,005)

Job Information

Subaru of America Lead Security Operations Engineer in Camden, New Jersey

About Subaru

LOVE. It’s what makes Subaru, Subaru®. As a leading auto brand in the US, we strive to be More Than a Car Company®. Subaru believes in being a positive force in the communities in which we live and work, not just with donations but with actions that set an example for others to follow. That’s what we call our Subaru Love Promise®.

Subaru is a globally renowned automobile manufacturer known for its commitment to innovation, safety, and sustainability. With a rich history dating back to 1953, Subaru has consistently pushed the boundaries of automotive engineering to deliver vehicles that offer not only exceptional performance but also a unique blend of utility and adventure.

Subaru's company culture is built on collaboration, diversity, and a shared passion for our product. We foster an inclusive environment that encourages employees to bring their unique perspectives and talents to the table. Our team members are driven by a common goal: to create exceptional vehicles that inspire and delight our customers.

Role Summary

Maintains responsibility for the expansion and maintenance of our threat detection and incident response toolset working closely with our external Security Operations Center (SOC). With a strong knowledge of and deep understanding of Microsoft security technologies, enhances our proactive monitoring, automation, and threat mitigation capabilities.

Major Responsibilities

  • Deploys, configures, and manages Microsoft Sentinel SIEM (security information and event management) for enterprise-wide security event monitoring.

  • Develops custom log ingestion from Microsoft and third-party sources into Sentinel.

  • Helps create, fine-tune, and maintain Kusto Query Language (KQL) queries for advanced threat hunting and alert tuning.

  • Maintains and optimizes Microsoft Defender configurations, including policies, exclusions, and response actions.

  • Integrates threat intelligence feeds as needed into Sentinel for enhanced threat detection.

  • Implements and manages Microsoft Defender for Cloud to monitor and secure Azure workloads.

  • Supports Windows security hardening using Defender and Group Policy configurations.

  • Develops Sentinel automation rules and workflows to reduce false positives and enhance alert accuracy.

  • Continuously improves SIEM correlation rules, alerts, and response procedures.

Additional Responsibilities

  • Improves Security Operations Center (SOC) efficiency through PowerShell scripting, API integrations, and automation.

  • Monitors SOC escalations and security alerts from Microsoft Defender for Endpoint, Defender for Identity, Defender for Office 365, and Defender for Cloud.

Required Skills & Personal Qualifications

  • Expertise in Microsoft Sentinel SIEM (security information and event management), including log ingestion, Kusto Query Language (KQL) queries, and automation.

  • Hands-on experience with Microsoft Defender for Endpoint, Identity, Office 365, and Cloud.

  • Strong knowledge of Windows security architecture, including Active Directory, Group Policy, and Windows Defender settings.

  • Experience in incident response, threat hunting, and forensic analysis.

  • Ability to write and optimize KQL queries for advanced security analytics.

  • Familiarity with MITRE ATT&CK framework and common attack techniques.

  • Deep understanding of Microsoft security technologies and will help enhance our proactive monitoring, automation, and threat mitigation capabilities.

EDUCATION/EXPERIENCE REQUIREMENTS: BA/BS degree or equivalent experience. At least 4-6 years of experience in Security Operations (SecOps) or SOC.

PREFERRED CERTIFICATIONS:

  • Microsoft SC-200 (Microsoft Security Operations Analyst) certification

  • Microsoft AZ-500 (Microsoft Azure Security Technologies) certification

WORK ENVIRONMENT

  • Hybrid Role: Remote work 2 days per week (After 90 Days Onboarding)

Compensation: The recruiting base salary range for this full-time position is $102,700 – $140,000 / year. Within the range, individual pay is determined by factors, including job-related skills, experience, and relevant education or training. (Internal Job Grade: P3T) In addition to competitive salary, Subaru offers an amazing benefits package that includes:

  • Medical, Dental, Vision Plans

  • Pension, Profit Sharing, and 401K Match Offerings

  • 15 Vacation days, 5 Floating Holidays, and 5 Sick days, and 9 Company Holidays

  • Tuition Reimbursement Program: $15,000 yearly benefit.

  • Vehicle Discount Programs

  • Visit our Careers landing page for additional information about our compensation and benefit programs.

DirectEmployers