Senior Security Operations Engineer

Date: Jul 31, 2019

Location: Greensboro, NC, US

Company: Lincoln Financial

Alternate Locations: Work from Home

Relocation assistance is not available for this opportunity.

Level: P4

Requisition #60277

About The Company

Led by over 10,000 employees  – including you –  Lincoln Financial Group provides advice and solutions that help empower people to take charge of their financial lives with confidence and optimism. Today, more than 17 million customers trust our retirement, insurance and wealth protection expertise to help address their lifestyle, savings and income goals, as well as to guard against long-term care expenses.



Lincoln’s award-nomanicated and accomplished Security Operations organization is looking to bring on a Senior Security Operations Engineer to help put forth the strategy and implementation of enhancements to the SOC’s Splunk Monitoring System. This is opportunity is the perfect role for someone who is enthusiastic about Cyber Security and how it relates to AWS.  This position will provide subject matter expertise and direction on complex projects/initiatives for the IT Security Operations Center (SOC) area.  They will be responsible for maintaining and improving the organizations 24x7x365 detection and response capabilities in a cloud first environment.  This Engineer will collaborate within the Security Operations Center building correlation alerts and wherever automate and orchestrate security response.




  • Maintains knowledge on current and emerging developments/trends for assigned area(s) of responsibility, assesses the impact, and collaborates with senior management to incorporate new trends and developments in current and future solutions.
  • Directs and enhances organizational initiatives by positively influencing and supporting change management and/or departmental/enterprise initiatives within assigned area(s) of responsibility.
  • Identifies and directs the implementation of process improvements that significantly improve quality across the team, department and/or business unit for his/her assigned area(s) of responsibility.
  • Provides subject matter expertise to team members and applicable internal/external stakeholders on complex assignments/projects for his/her assigned area(s) of responsibility.
  • Provides direction on complex assignments, projects, and/or initiatives to build and enhance the capability of his/her assigned area(s) of responsibility.
  • Creates, scripts, and maintains mission critical correlation searches and alerts leveraging diverse log sources and types including and not limited to AWS, CASB, Firewall, HIPS, IPS, DLP, Proxy, DNS.
  • Provides subject matter expertise in security logging and alerting best practices within the Security Operations Center to detect and prevent security incidents.
  • Optimizes alerting and response techniques utilizing complex and/or cutting-edge machine learning, automation, and orchestration techniques.
  • Provides subject matter expertise for alerting and analyzing security events within the Security Operations Center to prevent and address security incidents.
  • Monitors and provides assurance of the overall health and effectiveness of prevention, detection, and response capabilities.
  • Architects procedures for how and what the Security Operations Center responds to.
  • Collaborates with security engineering and cyber threat intelligence teams to implement security tools within the IT Security Operations area.
  • Provides training and mentoring to team members.





  • 4 Year/Bachelor's degree or equivalent work experience (4 years of experience in lieu of Bachelor's) (Minimum Required)




  • 5 – 7+ Years of IT Security experience, in areas such as security operations, incident analysis, incident handling, and vulnerability management or testing, log analysis, intrusion detection that directly relates to the responsibilities of this position. (Required)
  • Hands-on experience with Splunk
  • Cybersecurity experience is required
  • An Intermediate understanding of Python as a scripting language is required
  • AWS experience is required





This position may be subject to Lincoln’s Political Contribution Policy. An offer of employment may be contingent upon disclosing to Lincoln the details of certain political contributions. Lincoln may decline to extend an offer or terminate employment for this role if it determines political contributions made could have an adverse impact on Lincoln’s current or future business interests, misrepresentations were made, or for failure to fully disclose applicable political contributions and or fundraising activities.

Any unsolicited resumes/candidate profiles submitted through our web site or to personal e-mail accounts of employees of Lincoln Financial Group are considered property of Lincoln Financial Group and are not subject to payment of agency fees.


Lincoln Financial Group ("LFG") is an Equal Opportunity employer and, as such, is committed in policy and practice to recruit, hire, compensate, train and promote, in all job classifications, without regard to race, color, religion, sex (including pregnancy), age, national origin, disability, sexual orientation, gender identity and expression, veterans status, or genetic information. Opportunities throughout LFG are available to employees and applicants and are evaluated on the basis of job qualifications. We have a drug free work environment and we perform pre-employment substance abuse testing.


This Employer Participates in E-Verify. See the E-Verify notices.  


Este Empleador Participa en E-Verify. Ver el E-Verify avisos. 

Nearest Major Market: Greensboro

Job Segment: Change Management, Management