Security Engineer

Security Engineer

As a Security Engineer within our Operations Engineering Center, you'll protect Billtrust's infrastructure and applications through SOC operations, threat detection, and DevSecOps practices. You'll manage our SIEM AI platform (GreyMatter AI), respond to security incidents, and integrate security controls into our CI/CD pipelines.

You'll engineer AI-powered threat hunting agents, autonomous security playbook execution, and intelligent vulnerability assessment systems. Your work will safeguard billions of dollars in transactions while pioneering the use of AI and autonomous agents in security operations and threat response

Key Responsibilities:

• Manage Security Information and Event Management (SIEM) platform operations using GreyMatter AI
• Perform threat detection, alert triage, and incident response coordination
• Engineer AI SIEM correlation engines and autonomous alert resolution systems
• Develop intelligent threat hunting agents using LLM and machine learning techniques
• Build and maintain security playbooks for incident response and automated remediation
• Implement vulnerability scanning and assessment across applications and infrastructure
• Develop container security practices and image scanning within CI/CD pipelines
• Implement DevSecOps practices: secure code analysis, dependency scanning, compliance automation
• Manage cloud security controls (AWS WAF, Azure Sentinel, IAM)
• Create LLM-powered vulnerability assessment and remediation automation tools

Required Qualifications

Experience & Technical Background

• 5+ years of hands-on experience in security engineering, SOC operations, or DevSecOps
• Demonstrated expertise in SIEM platform management and security event correlation
• Strong background in threat detection, incident response, and threat intelligence
• Experience with vulnerability scanning and management tools
• Hands-on knowledge of cloud security (AWS Security Hub or Azure Sentinel)
• Familiarity with CI/CD security scanning and DevSecOps practices
• Strong understanding of network security, firewalls, and traffic analysis
• Proficiency in at least one programming/scripting language (Python, Go, Bash preferred)
• Proficiency using Claude Code, GitHub Copilot or similar AI coding assistance

Soft Skills & Attributes

• Strong analytical and investigative mindset for threat analysis
• Excellent communication skills, especially during security incidents
• Detail-oriented with high attention to security controls and compliance
• Ability to work in high-pressure environments during active security incidents
• Commitment to continuous learning on emerging security threats and technologies