Senior SOC Engineer

Forter is looking for a Senior SOC Engineer to enhance our security operations and ensure robust protection against sophisticated threats. This role is crucial for maintaining our Security Operations as a high-performing and resilient hub that can quickly adapt to emerging security challenges in the fintech industry. You will take the lead in refining our SOC capabilities by monitoring network traffic, analyzing security incidents, managing security tools, automating processes, and providing expertise to SOC analysts, without having direct management responsibilities. The Senior SOC Engineer collaborates with cross-functional teams to build defenses, respond to incidents, and design strategies for robust cybersecurity posture.

Why should you join us? At Forter, you’ll play a critical role in defending against sophisticated threats in a high-stakes fintech environment. As a Senior SOC Engineer, you will:

• Shape the Future of Security: Lead initiatives to enhance our SOC capabilities, using cutting-edge technologies and automation tools to protect against advanced threats in real-time.
• Make an Outsized Impact: Your work will directly influence Forter’s ability to safeguard millions of transactions for major clients like Nordstrom, Priceline, and ASOS, enhancing customer trust and revenue growth.
• Work with a Talented Team: Collaborate with industry-leading experts in cloud security, fraud prevention, and data analytics. Forter is driven by a culture of excellence, continuous learning, and innovation.
• Access to Leading-Edge Tools: You will have the freedom to experiment with the latest SIEM, SOAR, EDR, and cloud-native security technologies, empowering you to stay at the forefront of cybersecurity practices.

This is more than just a job; it’s an opportunity to grow your expertise in a dynamic, supportive environment while making a tangible impact on the digital commerce industry.

What you will be doing:

• Security Engineering & Automation: Oversee the deployment, configuration, and tuning of SOC related security tools to enhance detection accuracy, reduce false positives, and manage end-to-end EDR operations. Drive improvements in SOC workflows, automating enrichment processes, and developing playbooks for more efficient alert handling.
• Security Monitoring & Threat Detection: Continuously monitor security alerts, events, and IoCs across all platforms. You’ll build and deploy queries and scripts, and create dashboards and workflows to enhance visibility and reporting.
• Proactive Threat Hunting: Develop and implement threat hunting procedures to proactively identify potential risks and vulnerabilities before they escalate.
• Cloud Security Monitoring: Analyze and manage AWS security logs through the SIEM, while also engaging directly with AWS security services and CSPM responsible team for proactive defense and monitoring in the cloud environment.
• Incident Response: Enhance the IRP and Coordinate with the SOC team and cross-functional teams during the incident response lifecycle, focusing on containment, eradication, recovery, and post-incident analysis.
• Vendor Coordination: Collaborate with third-party vendors as needed for managed security services and specialized tools.
• Mentorship: Mentor junior security team members, providing guidance on incident handling and security best practices.

What you’ll need:

• Experience: Minimum of 5+ years in SOC or incident response roles, with hands-on experience in threat detection and mitigation.
• Technical Skills: Strong capability in threat detection, incident response, and analysis of complex attack patterns, with a focus on the AWS environment. Skilled in writing SIEM queries, alerts, and dashboards.
• End-to-End Investigations & Network Protocols: Extensive experience with end-to-end investigations, handling security incidents, and deep knowledge of security network protocols, along with familiarity with the OWASP Top 10 vulnerabilities.
• EDR Expertise: Hands-on experience managing EDR tools, including end-to-end operations from deployment and configuration to analysis and response.
• Scripting & Automation: Knowledge of scripting languages such as Python, SQL, or Bash to automate SOC workflows.
• Core Skills: Strong problem-solving, organizational, and analytical skills, with attention to detail and a security-first approach to translating complex issues into solutions. Excellent communication skills for effective collaboration and reporting. Continuous learning mindset with an eagerness to stay updated on cybersecurity trends.

It’d be cool if you also:

• Familiar with industry frameworks (ISO 27001, PCI-DSS, SOC2, NIST, etc.) and regulatory requirements.
• Have one or more certifications: GCIH, GIAC, CSA, CompTIA CySA+, or other relevant certifications.

About us: Digital commerce is built on trust. At every point along the eCommerce journey, businesses must make a critical decision: Can I trust this customer? Answering this simple question accurately and instantly is powerful—it can accelerate revenue growth and strengthen a company’s connection with its customers. How do we do it? Forter was founded on the insight that it's not about what is being purchased, nor where—but who is behind the interaction. The Forter Decision Engine finds patterns across more than one billion identities in our dataset. We isolate fraudsters and protect customers—ensuring everyone gets the experience they deserve.

Given that trust is central to how we operate, Forter is very much driven by a defined set of values. We attract remarkable talent and have retention and engagement levels that are well above benchmarks. Trust is backed by data – Forter is a recipient of over 10 workplace and innovation awards, including: Great Place to Work Certification (2021, 2022, 2023), Fortune’s Best Workplaces in NYC (2022, 2023 and 2024), Forbes Cloud 100 (2021, 2022, 2023 and 2024), Anti-Fraud Solution of the Year at the Payments Awards (2024), Fintech Breakthrough Awards – Best Fraud Prevention Platform (2023).

Life as a Forterian: We are a team of over 500 Forterians spread across 3 different continents. Since 2013, we've raised $525 million from investors such as Tiger Global, Bessemer, Sequoia Capital, March Capital, and Salesforce Ventures. We're on a mission to bring trust to global digital commerce so that companies like Nordstrom, Priceline, Instacart, and ASOS can block fraud, drive revenue, and improve customer experience. At Forter, we believe unique people create unique ideas, and valuable experience comes in many forms. So, even if your background doesn’t match everything we have listed in the job description, we still encourage you to apply and tell us why your skills and values could be an asset to us. By welcoming different perspectives, we grow together as humans and as a company. Forter is an Equal Employment Opportunity employer that will consider all qualified applicants, regardless of race, color, religion, gender, sexual orientation, marital status, gender identity or expression, national origin, genetics, age, disability status, protected veteran status, or any other characteristic protected by applicable law.