Milliman Inc

Senior Information Security Engineer

Milliman Inc$151K — $249K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Expertise in security frameworks such as NIST CSF and ISO 27001
  • Strong experience in Microsoft Sentinel engineering and KQL development
  • Proficient in data protection principles including DLP and encryption
  • Experience in Threat Hunting and MITRE ATT&CK framework
  • Hands-on skills in Incident Response and Digital Forensics
  • Knowledge of Detection-as-Code and automation tools like Python
  • Familiarity with Microsoft Defender Suite and its security monitoring capabilities

Responsibilities

  • Design and enhance enterprise security capabilities across diverse environments
  • Maintain security controls for data protection and incident response
  • Lead investigations and coordinate response to security incidents
  • Drive enterprise initiatives for data security and access governance
  • Provide expertise for security around emerging technologies like AI
  • Collaborate with cross-functional teams to implement secure practices
  • Develop automation and standards to improve operational efficiency
  • Support compliance and risk assessments aligning with best practices
  • Enhance the security program through continuous process improvements

Benefits

  • Comprehensive medical, dental, and vision coverage
  • Employee Assistance Program for personal and work-related support
  • 401(k) plan with company matching and profit-sharing contributions
  • Discretionary bonus program recognizing employee achievements
  • Flexible Spending Accounts for pre-tax savings
  • Accrued Paid Time Off from the first day of work
  • Minimum of 10 paid holidays per year
  • Family building benefits including adoption and fertility assistance
  • 11 weeks of paid parental leave for eligible employees
  • Fully covered life insurance and disability benefits
Full Job Description
POSITION SUMMARY:

The Information Security Engineer - Security Operations & Threat Detection is responsible for designing, implementing, and continuously enhancing enterprise security operations capabilities to defend against evolving cyber threats. This role serves as a technical leader within the Security Operations function, specializing in threat detection, security monitoring, incident response, threat hunting, vulnerability management, malware analysis, and security automation across cloud, on-premises, and hybrid environments. The engineer develops scalable detection and response capabilities, drives continuous improvement of security operations maturity, and partners closely with cross-functional teams to strengthen defensive controls and reduce organizational risk. This role also provides actionable security intelligence, supports rapid response to emerging threats, and mentors team members while advancing the effectiveness and resilience of the enterprise security program.

RESPONSIBILITIES:

  • Design, implement, and continuously improve enterprise security capabilities that protect data, systems, and business operations across cloud, on-premises, SaaS, hybrid, and AI-enabled environments.
  • Develop and maintain security controls and detection capabilities for data protection, threat monitoring, threat hunting, and incident response, leveraging threat intelligence and adversary TTPs to reduce organizational risk.
  • Lead security investigations and response activities by analyzing complex security events, conducting forensic analysis, coordinating containment and remediation efforts, and helping prevent future incidents through lessons learned and control enhancements.
  • Drive enterprise data security initiatives, including data discovery, classification, encryption, data loss prevention (DLP), access governance, secure data lifecycle management, and protection of sensitive and regulated information.
  • Provide security architecture, risk management, and governance expertise for emerging technologies, including artificial intelligence, generative AI, machine learning platforms, AI agents, third-party AI services, and cloud-based solutions.
  • Collaborate with engineering, infrastructure, cloud, identity, data, compliance, and business teams to embed secure-by-design principles, perform threat modeling, assess risk, and implement effective security controls across enterprise technologies and projects.
  • Develop and maintain security automation, standards, procedures, playbooks, and technical guidance that improve operational efficiency, strengthen security controls, and support consistent security practices across the organization.
  • Support security governance, compliance, and audit activities by performing risk assessments, validating control effectiveness, assessing third-party security risks, and ensuring alignment with organizational policies, regulatory requirements, and industry best practices.
  • Drive continuous improvement of the security program through process optimization, control validation, metrics, reporting, innovation, and mentoring while promoting industry best practices for cybersecurity, data protection, privacy, and AI security.


SKILLS & QUALIFICATIONS REQUIRED:

  • Knowledge of security frameworks and standards such as NIST CSF, NIST AI RMF, ISO 27001, CIS Controls, and related regulatory or compliance requirements.
  • Strong experience with Microsoft Sentinel engineering, including KQL development, detection tuning, and advanced security monitoring across enterprise environments.
  • Strong knowledge of data protection principles, including data classification, DLP, encryption, identity and access management, security monitoring, and incident response.
  • Expertise in Threat Hunting utilizing the MITRE ATT&CK framework, coupled with Threat Intelligence Integration to proactively identify and investigate emerging threats.
  • Hands-on experience with Incident Response & Digital Forensics, including advanced investigations, containment, remediation, and post-incident analysis.
  • Proficiency in Detection-as-Code, CI/CD pipelines, Python scripting, and SOAR playbook automation to improve detection quality, operational efficiency, and response consistency.
  • Deep knowledge of Microsoft Defender Suite (MDE, MDI, MDO), Azure, and Entra ID security monitoring, with the ability to correlate telemetry across cloud, identity, and endpoint security platforms.


LOCATION:

This hybrid position is based out of the Milliman office in Seattle, WA. The expected application deadline for this job is July 20th, 2026.

COMPENSATION:

The overall range for this role is $151,340 - $249,780. A combination of factors will be considered, including, but not limited to, education, relevant work experience, qualifications, skills, certifications, etc.

BENEFITS:

We offer a comprehensive benefits package designed to support employees' health, financial security, and well-being. Benefits include:

  • Medical, Dental and Vision - Coverage for employees, dependents, and domestic partners.
  • Employee Assistance Program (EAP) - Confidential support for personal and work-related challenges.
  • 401(k) Plan - Includes a company matching program and profit-sharing contributions.
  • Discretionary Bonus Program - Recognizing employee contributions.
  • Flexible Spending Accounts (FSA) - Pre-tax savings for dependent care, transportation, and eligible medical expenses.
  • Paid Time Off (PTO) - Begins accruing on the first day of work. Full-time employees accrue 15 days per year, and employees working less than full-time accrue PTO on a prorated basis.
  • Holidays - A minimum of 10 paid holidays per year.
  • Family Building Benefits - Includes adoption and fertility assistance.
  • Paid Parental Leave - 11 weeks of paid leave for employees who meet eligibility criteria.
  • Life Insurance & AD&D - 100% of premiums covered by Milliman.
  • Short-Term and Long-Term Disability - Fully paid by Milliman.


About Milliman Inc

Milliman is a global consulting firm that provides actuarial, risk management, and healthcare consulting services. The company's clients include insurance companies, healthcare providers, and government agencies. Milliman's services are designed to help clients manage risk, improve financial performance, and comply with regulatory requirements. The company was founded in 1947 and is headquartered in Seattle, Washington. Milliman has offices in North America, Europe, Asia, and Australia.
Learn more about Milliman Inc
Size
4,000 employees
Industry
Founded
1947

Similar Jobs

More Jobs at Milliman Inc

More Information Technology Jobs

Find similar Senior Information Security Engineer jobs: