Unisys · 1 day ago
Security Platform Engineer
Rockville, MD
Full-time
Hybrid
Senior Level
5+ years expUnisys is an AWS partnered analytics organization that operates the world’s largest financial data store. They are seeking a Security Platform Engineer to build and improve the engineering aspects of their Security Operations Center (SOC), focusing on detection engineering, automation, and platform design.
Business DevelopmentInformation ServicesInformation TechnologyManagement Information SystemsSoftware
Hiring Manager
Gaurav Gosavi
Responsibilities
Design and implement high-quality detection use cases aligned to MITRE ATT&CK
Build, tune, and maintain correlation searches, alerts, dashboards, and ES content in Splunk Enterprise Security
Perform detection coverage gap analysis and define a roadmap to improve visibility
Implement Risk-Based Alerting (RBA) to reduce noise and improve signal quality
Develop detections across on-prem and multi-cloud environments (AWS, Azure, GCP)
Design and build automated response playbooks using Splunk SOAR
Integrate security tools to enable automated investigation and response workflows
Develop scripts and automation using Python, PowerShell, or Bash
Build reusable automation frameworks that scale across use cases
Help define what 'good' looks like for a mature SOC from an engineering perspective
Identify gaps in the current SOC platform and provide clear technical guidance to improve it
Establish standards, best practices, and frameworks for detection engineering and automation
Mentor internal engineers on SOC engineering concepts and approaches
Contribute to long-term SOC platform and capability strategy
Partner with SOC analysts to understand investigation workflows and improve detections
Work with threat intelligence and threat hunting teams to operationalize research
Collaborate with platform engineering on infrastructure and reliability
Document detection logic, playbooks, and platform architecture
Qualification
Required
5+ years of experience in a SOC environment, with exposure to mature SOC operations
Proven Detection Engineering experience
Hands-on experience with Splunk Enterprise Security (ES)
Experience designing or contributing to SOC platforms and detection programs
Strong understanding of MITRE ATT&CK
Ability to provide technical guidance on how to build and improve a SOC
Strong scripting skills (Python, PowerShell, Bash)
Preferred
Hands-on experience with Splunk SOAR (Phantom) (training can be provided)
Risk-Based Alerting (RBA) implementation experience
Threat hunting background applied to detection engineering
Cloud security monitoring experience (AWS, Azure, GCP)
Splunk UEBA or behavioral analytics exposure
Experience mentoring or leading detection engineering efforts
Relevant certifications (GIAC, CISSP, or similar)
Company
Unisys
Unisys is a worldwide information technology company. They provide a portfolio of IT services, software, and technology that solves
10001+ employees
H1B Sponsorship
Unisys has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (43)
2024 (47)
2023 (24)
2022 (21)
2021 (21)
2020 (25)
Funding
Current Stage
Public CompanyTotal Funding
$1.19B2025-06-16Post Ipo Debt· $700M
2020-10-29Post Ipo Debt· $485M
2010-01-19Acquired
Leadership Team
Mike Thomson
CEO & President
Raj R Raman
CTO, Cloud
Recent News
Company data provided by crunchbase