Job Description

LevelBlue reduces risk and builds lasting resilience so organizations can innovate and advance their mission with confidence. As the world’s most analyst-recognized and largest pure-play managed security services provider, LevelBlue elevates client outcomes that matter: stronger defense, faster response, and sustained business continuity. LevelBlue combines AI-powered security operations, advanced threat intelligence, and elite human expertise to provide the most comprehensive portfolio of strategic advisory, managed security, offensive security, and incident response services.
A Sr. Cyber Threat Engineer is a member of Global Threat Operations for LevelBlue Managed Security Services (MSS). In addition to possessing technical knowledge and leading delivery of complex technical issues, a Sr. Engineer interacts extensively with Cyber Threat Analysts and Engineers, customers, partners, and other internal organizations using professional etiquette- serving as a liaison for threat management services as well as an escalation point within GTO.

Sr. Cyber Threat Engineer perform the following duties:
• Reporting to the Operations Manager for Global Threat Operations, the GTO Cyber Threat Operations Lead provides leadership responsibility for a team of cyber threat analysts and engineers responsible for the following activities:
• The use strong operating system, TCP/IP networking, and application skills to perform analysis and understand detected threats
• Analyze and respond to security events from firewalls, EDR, IDS, IPS, SIEM (Qradar, Splunk, ArcSight, LogRhythm), Web Application Firewall (WAF) and other security data sources within documented SLA
• Monitor and respond within service level agreement (SLA) standards to customer tickets and threats requiring incident notification
• Tune devices for proactive blocking and detection based on customer business need
• Configure, manage, and upgrade protection policies for Intrusion Detection Systems (IDS), Intrusion Protection Systems (IPS), Security Information and Event Monitoring (SIEM) platforms, and Endpoint Detection & Response Platforms
• Tune threat detection and protection devices for unique customer environments
• Create, improve, and document processes for the management and monitoring of security solutions.
• Demonstrate leadership in all areas of the customer service engagement
• Manage tasks and projects to meet the goals of the MSS & GTO organizations
• Organize and facilitate technical meetings with customers and internal organizations
• Maintain knowledge of industry-wide attacks and the current threat environment
• Demonstrate leadership to GTO & LevelBlue staff and customers
• Create, improve, and document processes for the management and monitoring of security solutions
• Take responsibility for customer satisfaction and overall success of managed services
• Respond to needs and questions of customers in a polite, positive, and professional manner concerning their managed services, managed devices and detected threats
• Adhere to policies, procedures, and security best practices
• Act as a mentor and escalation point for analysts and engineers within GTO
• Develop training plans to elevate the performance of analysts
• Lead projects to develop new service offerings and integrate new technology to services portfolio
• Work with internal engineering teams to facilitate new features and functions
• Collect and report data trending across multiple products and customers
• Provide input and guidance on new product development
• Act as both team and thought leader to junior threat team members within region and interact with peer leads and management across regions
• Understand big picture security and threat landscape, concerns and motivations
• Collaborate with management on process improvement, documentation and definition for threat analysis and classification
• Foster a culture of growth and development within the teams
• Actively recognize and reward team members for actions above and beyond
Skills & Knowledge Requirements:
Must have skills/knowledge in some of the following:
• Project and Queue Management
• SOC Operations / Management
• Endpoint Detection & Response
• Security Information and Event Management (SIEM)
• Unix / Linux and Windows system administration
• Information security best practices & network security architecture
• Signature based security products
• Current exploit and remediation techniques
• TCP/IP networking
• Vulnerability Scanning technologies
• Log collection and analysis tools
• Threat Intelligence
• Incident Response / Forensics
• Payment Card Industry (PCI) Standards
Desired experience:
• 7 or more years of information security or networking experience
• Previous operational experience as an analyst or senior engineer
• Excellent customer service skills
• Excellent analytical thinking and problem-solving skills
• Strong oral and written communication skills
• Self-managed and team oriented; a great coach and teacher
• Responsive and collaborative
• Deadline and detail oriented; highly motivated
• Leadership & management experience
Required:
• English: Demonstrated Fluency
Preferred:
• Bachelor’s/Master’s Degree in Information Technology or Similar Area Of Study
• At least 7 years of experience in Information Security or Networking
• Certified in Security related Industry, Vendor or Professional Certification
• 2nd language is also desired: Spanish, Portuguese, French, German
Education:
• A high school diploma or equivalent is required; a college or university degree is a plus.
Why Join LevelBlue?
At LevelBlue, you’re not just an employee—you’re part of a team making a real difference in the world of cybersecurity. We foster a culture of innovation and creativity where your contributions are valued, and you’ll have the support and resources to grow and thrive.
Benefits and Perks:
• Comprehensive medical, dental, and vision insurance.
• 401(k) with employer matching.
• Generous paid time off and holidays.
• Flexible spending accounts and health savings accounts.
• Employee assistance programs.
• Training and development opportunities.
• Adoption assistance program.

This role is open to candidates legally authorized to work in the United States. At LevelBlue, we support flexible work and bring people together in person for key moments based on role, team, and business needs.
LevelBlue is committed to a culture of respect, inclusion, and equal opportunity. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age, or any other status protected under applicable law.
To all agencies: Please do not contact LevelBlue employees outside of the Talent Acquisition team. LevelBlue’s policy is to only accept resumes from agencies through its approved agency process and with a valid agreement in place. Any resume submitted outside this process will be considered the property of LevelBlue, and no fee will be paid if a candidate is hired from such a submission.

#LI-KD1