Information Security Engineer

Babel Street$100K — $110K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Cybersecurity or related field.
  • 3+ years of experience in Information Security or Security Engineering.
  • Familiarity with Microsoft XDR and CrowdStrike Falcon.
  • Experience with Microsoft Entra ID, including Risky Users and Identity Protection.
  • Proficient in scripting languages such as PowerShell or Python.
  • Working knowledge of AWS, Microsoft Azure, and Google Cloud Platform.

Responsibilities

  • Monitor, respond to, and investigate security alerts and incidents.
  • Administer Microsoft XDR, CrowdStrike Falcon, and Microsoft Entra ID.
  • Develop automation scripts to enhance security operations and workflows.
  • Document investigations and create incident response playbooks.
  • Collaborate with IT and Engineering teams to address security findings.
  • Conduct research on emerging threats and attack techniques.

Benefits

  • Health Benefits: covers 85-100% monthly premiums for you and your family.
  • Retirement Plans: Traditional and Roth 401(K) with competitive match.
  • Unlimited Flexible Leave: employees manage their own time.
  • 12 paid Federal Holidays provided.
  • Tuition Reimbursement for continuing education.
Full Job Description
Position overview

The Information Security Engineer is responsible for supporting and advancing the organization's information security program through security operations, incident response, automation, and continuous improvement initiatives. Working directly with the Information Security Manager, this role helps protect the organization's users, systems, applications, and data by monitoring security events, investigating incidents, administering security technologies, and improving operational capabilities.

This position is highly technical and hands-on. Successful candidates possess a strong understanding of enterprise technologies, enjoy solving complex technical problems, and are driven to improve systems through engineering, automation, and process optimization.

The ideal candidate is intellectually curious, communicates effectively, learns new technologies rapidly, and takes ownership of problems from initial investigation through implementation of practical, long-term solutions. They are comfortable working across infrastructure, cloud, identity, and endpoint technologies while collaborating with multiple technical teams to strengthen the organization's overall security posture.
Responsibilities
  • Monitor, investigate, and respond to security alerts and incidents.
  • Administer Microsoft XDR, CrowdStrike Falcon, and Microsoft Entra ID.
  • Investigate phishing, identity attacks, endpoint detections, account compromise activity, and other security events.
  • Develop scripts, automations, and operational workflows to improve efficiency and reduce manual effort.
  • Create, maintain, and improve security run books, Standard Operating Procedures (SOPs), and incident response playbooks.
  • Document investigations, findings, technical procedures, and operational processes.
  • Assist with vulnerability management and remediation efforts.
  • Coordinate with Infrastructure, Cloud, IT, and Engineering teams to resolve security findings.
  • Research emerging threats, attack techniques, and security technologies.
  • Utilize AI tools to improve research, scripting, documentation, troubleshooting, and engineering productivity.
  • Recommend and implement improvements to security processes, detections, workflows, and automations.
  • Participate in security projects and perform additional duties as assigned.
Required Qualifications
  • Bachelor's degree in Cybersecurity, Cyber Operations, Systems Security Engineering, Computer Science, Information Assurance, or a related technical discipline.
  • Three (3) or more years of experience in Information Security, Security Operations, or Security Engineering.
  • Experience with Microsoft XDR.
  • Experience with CrowdStrike Falcon.
  • Experience with Microsoft Entra ID, including Risky Users and Identity Protection.
  • Working knowledge of AWS, Microsoft Azure, and Google Cloud Platform (GCP).
  • Experience investigating security incidents.
  • Experience writing PowerShell, Python, or similar scripting languages.
  • Experience developing automations and operational workflows.
  • Experience creating, maintaining, and improving security run books, Standard Operating Procedures (SOPs), and incident response playbooks.
Technical Competencies

The ideal candidate should have experience with, or the ability to quickly become proficient in, the following:
  • Security incident response and investigation.
  • Endpoint Detection and Response (EDR/XDR) platforms.
  • Security Information and Event Management (SIEM) platforms.
  • Log analysis, event correlation, and threat hunting.
  • Detection engineering and alert tuning.
  • Identity and authentication investigations.
  • Microsoft 365 and Microsoft Entra ID security investigations.
  • Email security and phishing investigations.
  • Vulnerability management and remediation workflows.
  • PowerShell, Python, or similar scripting languages.
  • Kusto Query Language (KQL) and/or Splunk Processing Language (SPL).
  • Microsoft Graph API, REST APIs, and security automation.
  • Cloud security investigations across AWS, Azure, and GCP.
  • Developing and maintaining security run books, Standard Operating Procedures (SOPs), and incident response playbooks.
  • Working knowledge of the NIST Cybersecurity Framework (CSF).
  • Familiarity with the MITRE ATT&CK Framework and common adversary tactics, techniques, and procedures (TTPs).
  • Strong understanding of enterprise technology, including Windows, Linux, networking fundamentals, identity systems, cloud infrastructure, and common enterprise architectures.
What We're Looking For

We're looking for an engineer. The ideal candidate is naturally curious and enjoys solving difficult technical problems. They don't stop at identifying an issue or escalating it to someone else. They take ownership, investigate thoroughly, and work toward implementing practical, long-term solutions.

You do not need to know everything. What matters is the ability to learn quickly, research effectively, experiment, and solve problems that don't already have documented answers.
Successful candidates will:
  • Take ownership of complex technical challenges and drive them through resolution.
  • Think critically, identify root causes, and solve problems rather than treating symptoms.
  • Independently research unfamiliar technologies, products, APIs, and attack techniques.
  • Build scripts, automations, and workflows that improve security operations.
  • Develop practical solutions when existing tools or processes are insufficient.
  • Continuously identify opportunities to improve security operations and business processes.
  • Learn new technologies exceptionally quickly and apply them with minimal supervision.
  • Be comfortable working through ambiguity, incomplete documentation, and unfamiliar technical environments.
  • Leverage AI tools such as OpenCode, Claude, Gemini, GitHub Copilot, ChatGPT, or similar platforms to accelerate research, scripting, engineering, documentation, and troubleshooting while maintaining sound technical judgment.
  • Demonstrate persistence and resourcefulness when solving problems that have no obvious solution.

If you're the type of engineer who enjoys figuring things out, building new capabilities, and leaving systems better than you found them, you'll fit in well on this team.
Desired Characteristics
  • Excellent verbal and written communication skills.
  • Highly proactive with a strong sense of ownership and accountability.
  • Strong analytical, troubleshooting, and critical thinking skills.
  • Exceptional organizational and documentation skills.
  • Ability to communicate effectively with both technical and non-technical audiences.
  • Comfortable collaborating across multiple technical teams.
  • Positive attitude and continuous improvement mindset.
  • High attention to detail and commitment to operational excellence.

Benefits at Babel Street (just to name a few...)
  • Health Benefits: Babel Street covers 85-100% monthly premium costs for Medical, Dental, Vision, Life & Disability insurances - for you and your family!
  • Retirement Plans: Babel Street offers both a Traditional and Roth 401(K) with a very competitive match.
  • Unlimited Flexible Leave: We trust our employees to manage their own time and balance their personal and work lives.
  • Holidays: Babel Street provides employees with 12 paid Federal Holidays
  • Tuition Reimbursement: We are committed to investing in our employees. One way we do that is with our Tuition Reimbursement Program for continuing education.

Range for this position based on qualifications and experience

$100,000-$110,000 USD

About Babel Street

Babel Street is a software company that provides advanced data analytics and search capabilities to government agencies and private sector organizations. The company was founded in 2014 by Jeff Chapman and is headquartered in Reston, Virginia. Babel Street's flagship product is the Babel X platform, which allows users to search and analyze data from a wide range of sources, including social media, news articles, and public records. The platform uses advanced algorithms and machine learning to identify patterns and trends in large datasets, enabling users to make more informed decisions. Babel Street is committed to helping its customers stay ahead of emerging threats and opportunities.
Learn more about Babel Street
Size
50 employees
Industry
Founded
2014

Similar Jobs

More Jobs at Babel Street

More Information Technology Jobs

Find similar Information Security Engineer jobs: