Senior Security Operations Engineer

Gong • Dublin • 1m ago

Why This Job is Featured on The SaaS Jobs

Security operations in SaaS increasingly looks like platform engineering, and this Senior Security Operations Engineer role reflects that shift. The remit spans SIEM and SOAR automation, multi cloud security posture, and custom detection logic, all areas that matter when a SaaS product depends on always on availability and trusted data handling. The emphasis on building defenses before incidents occur signals a modern SecOps posture aligned with cloud native delivery.

For a long term SaaS security career, the strongest value here is exposure to repeatable security systems rather than one off firefighting. Work on data ingestion pipelines, CI CD driven detection content, and threat hunting creates skills that transfer across SaaS companies with similar telemetry, compliance pressure, and incident response needs. Mentoring and cross functional collaboration also builds the operating muscle required to influence engineering, DevOps, and privacy stakeholders.

This role suits a senior practitioner who prefers turning ambiguous risk into engineered controls and measurable signals. It will fit someone who enjoys writing and tuning detections, reducing manual toil through automation, and navigating multi cloud complexity without losing sight of operational outcomes. It also aligns with professionals who want ownership of security tooling decisions and standards, not just alert triage.

The section above is editorial commentary from The SaaS Jobs, provided to help SaaS professionals understand the role in a broader industry context.

Job Description

We aren’t looking for a dashboard-watcher; we need a Digital Architect of Chaos-Prevention who treats zero-days like morning coffee and builds automated fortresses before a threat even breaks a sweat. As our Senior Security Operations Engineer, you’re the lead mechanic of our invisible shield, welding code and hardening global infrastructure until it’s more secure.

If you’re a cloud-savvy defender who thrives when the stakes are high and hates manual toil, your new playground is ready.

What You’ll Actually Do:

Chaos Wrangler: Orchestrate SIEM/SOAR tools like a digital Mozart. Help the analysts out by automating the boring tasks
ThreatBuster: Proactively look for threats that haven’t even decided to move in yet. You’re not just reacting; you’re predicting!
Trap Setter: You don’t wait for an antivirus to beep. You build custom logic, YARA rules, and Sigma signatures that catch attackers before they realize they’ve been spotted.
Master the Multi-Cloud: AWS, GCP, Azure—you’re the gatekeeper of our cloud kingdom, ensuring our posture is tighter than a drum across every environment.
Fortune Teller: You spend time in the dark corners of the web, so we don’t have to. You ingest feeds, analyze adversary actions, and turn exploit rumors into actionable defense strategies
The Elite Mentor: You’re the leader the pack looks to. You’ll level up our junior analysts/engineers and set the gold standard during on-call rotations.
The Cross-Functional Diplomat: You’ll bridge the gap among IT, DevOps, and Privacy, closing security gaps and ensuring the entire org is as resilient as the tech it uses.
Total Autonomy: We don't micromanage; we empower. You see a gap? You fix it. Do you see a process that can be automated? You build it.

Required Qualification:

5+ years of experience in any of the following areas:
- Security Data Pipeline Engineering
- Detection Engineering
- SIEM Engineering
- Cyber Intelligence and Threat Hunting
- Security Platform Engineering
Proficiency with EDR/XDR (CrowdStrike, SentinelOne, MS Defender), Cloud Security Posture Management (Wiz, Prisma Cloud, Orca), and WAFs (Cloudflare, Akamai).
Experience building data ingestion pipelines using CI/CD methodologies.
Proven experience building, testing, and tuning custom detection logic and familiarity with Query Languages (KQL, SQL, SPL) for automation needs.
Familiarity with attack frameworks (MITRE ATT&CK) and mitigation strategies.
Strong analytical and problem-solving skills.
Excellent communication and teamwork abilities.

Preferred Qualifications:

Security certifications like GXPN, GCIA, GCTI, GCDA, or similar are a plus.
Experience architecting stateful automation pipelines using Python, Go, and enterprise SOAR platforms
Ability to read/audit Terraform, Pulumo, or CloudFormation, and experience with Infrastructure as a code(IaC)
Experience with securing and monitoring containers within cloud environments

What makes Security at Gong unique?

Here at Gong, we trust and empower our employees with ownership to solve complex problems, make the right decisions, and build the best products that create radical impact. We call it “Own. Solve. Impact.”

Our security team is at the forefront of a monumental shift in how we implement processes. Instead of simply saying "no," we embrace the mindset of "let's explore how we can make it work." Our security team brings a wealth of backgrounds, experience, and wisdom to the table. Which means that age comes before security, or is it the other way around?

If you are curious to discover Gong's wonderful and challenging world, what are you waiting for? Don’t delay - fill in your application details. Who knows, maybe there’s a Gongster in you!