Tanium

IT Security Engineer

Tanium$113K — $173K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 3-5 years in security engineering or security operations
  • Experience securing AI/ML workloads
  • Hands-on experience with a SIEM platform
  • Administering a SOAR platform experience
  • Solid understanding of endpoint security
  • Familiarity with network protocols and operating systems
  • Experience in cloud environments like AWS or Azure

Responsibilities

  • Maintain and improve the in-house SOAR platform through automation and playbook development
  • Drive AI tool adoption for enhanced security operations
  • Manage and optimize SIEM data ingestion and log source coverage
  • Deploy and troubleshoot endpoint detection and response solutions
  • Review IT infrastructure for security impacts
  • Collaborate to improve telemetry and close visibility gaps
  • Contribute to incident response processes and reviews

Benefits

  • Medical, dental, and vision plans
  • Family planning benefits
  • Health savings and flexible spending accounts
  • 401(k) with company match
  • Employee assistance programs
  • Equity awards and well-being benefits
Full Job Description
The Basics

The Security Engineer will collaborate with Security, IT, and Engineering teams to defend and strengthen our security operations posture. You will be an integral part of the IT Security Engineering Team, responsible for owning and operating our SOAR and SIEM platforms, driving endpoint security initiatives, and building the automation and processes needed to detect, respond to, and remediate threats across the environment.

What you'll do
  • Contribute to and maintain our in-house SOAR platform - develop automation playbooks, extend capabilities, and accelerate incident response
  • Contribute to the aggressive adoption of AI tools within the Security team as well the protection of AI technologies across Tanium
  • Manage and optimize our SIEM environment - maintain data ingestion pipelines, ensure log source coverage meets security requirements, and partner with detection engineering on deployment and tuning
  • Support endpoint security tooling - deploy, configure, and troubleshoot endpoint detection and response (EDR) solutions across the fleet
  • Review IT infrastructure changes for security implications, ensuring new configurations and deployments align with security standards and best practices
  • Partner with IT and infrastructure teams to onboard new log sources, improve telemetry, and close visibility gaps
  • Contribute to incident response processes, including containment, eradication, and post-incident review

We're looking for someone with

Security Experience
  • 3-5 years of experience in a security engineering, security operations, or detection engineering role
  • Experience securing AI/ML workloads or applying AI-assisted tooling to security operations (e.g., LLM-driven triage, automated analysis, AI-augmented detection)
  • Hands-on experience administering a SIEM platform (e.g., Sentinel, Splunk, Elastic, Chronicle)
  • Hands-on experience with a SOAR platform (e.g., Cortex XSOAR, Splunk SOAR, Tines, Swimlane)
  • Solid understanding of endpoint security concepts - EDR, host-based detection, OS-level telemetry
  • Understanding of network protocols, operating systems (Windows, Linux, macOS), and common enterprise infrastructure
  • Experience operating in and managing cloud environments (AWS, Azure)

Engineering Experience
  • Proficiency in scripting and automation (our stack is primarily Python, but equivalent experience is welcome)
  • Experience with CI/CD concepts - pipelines, automated testing, and deployment workflows
  • Experience managing infrastructure as code (e.g., Terraform)
  • Strong troubleshooting and analytical skills
  • A relentless desire to automate the mundane to focus on solving the harder problems

Nice to Have
  • Experience with Tanium for endpoint management, visibility, or security modules
  • Experience with Azure Data Explorer (ADX) and Microsoft Sentinel
  • Experience writing detection logic (SPL, KQL, Sigma, or equivalent)
  • Familiarity with detection engineering practices and frameworks such as MITRE ATT&CK
  • Experience with threat intelligence platforms and enrichment workflows
  • Cloud security monitoring experience (AWS, Azure, GCP)
  • Experience supporting incident response in an engineering capacity - data gathering, log analysis, and providing technical context to responders

What you'll get

The annual base salary range for this full-time position is $113,000 to $173,000. This range is an estimate for what Tanium will pay a new hire. The actual annual base salary offered may be adjusted based on a variety of factors, including but not limited to, location, education, skills, training, and experience.

In addition to an annual base salary, team members will receive equity awards and a generous benefits package consisting of medical, dental and vision plan, family planning benefits, health savings account, flexible spending account, transportation savings account, 401(k) retirement savings plan with company match, life, accident and disability coverage, business travel accident insurance, employee assistance programs, disability insurance, and other well-being benefits.

About Tanium

Tanium is an American cybersecurity and systems management company. The company provides security and IT operations solutions for enterprises and government organizations. Tanium's platform provides real-time visibility and control over endpoints, including laptops, servers, virtual machines, containers, and cloud infrastructure. The company's products are used by organizations in a variety of industries, including finance, healthcare, retail, and government. Tanium was founded in 2007 by Orion Hindawi and his father David Hindawi. The company is headquartered in Santa Clara, California.
Learn more about Tanium
Size
1,500 employees
Industry
Founded
2007

Similar Jobs

More Jobs at Tanium

More Information Technology Jobs

Find similar IT Security Engineer jobs: