Information Security Engineer
Babel Street is the trusted technology partner for the world’s most advanced identity intelligence and risk operations. We deliver advanced AI and data analytics solutions providing unmatched, analysis-ready data regardless of language, proactive risk identification, 360-degree insights, high-speed automation, and seamless integration into existing systems. Babel Street empowers government and commercial organizations to transform high-stakes identity and risk operations into a strategic advantage. The actionable insights we deliver safeguard lives and protect critical assets around the world. Babel Street is headquartered in Reston, Virginia, with regional offices in Boston, MA and Cleveland, OH, and international offices in Australia, Canada, Israel, Japan, and the U.K. For more information, visit www.babelstreet.com.
Position overview
The Information Security Engineer is responsible for supporting and advancing the organization's information security program through security operations, incident response, automation, and continuous improvement initiatives. Working directly with the Information Security Manager, this role helps protect the organization's users, systems, applications, and data by monitoring security events, investigating incidents, administering security technologies, and improving operational capabilities.
This position is highly technical and hands-on. Successful candidates possess a strong understanding of enterprise technologies, enjoy solving complex technical problems, and are driven to improve systems through engineering, automation, and process optimization.
The ideal candidate is intellectually curious, communicates effectively, learns new technologies rapidly, and takes ownership of problems from initial investigation through implementation of practical, long-term solutions. They are comfortable working across infrastructure, cloud, identity, and endpoint technologies while collaborating with multiple technical teams to strengthen the organization's overall security posture.
Responsibilities
- Monitor, investigate, and respond to security alerts and incidents.
- Administer Microsoft XDR, CrowdStrike Falcon, and Microsoft Entra ID.
- Investigate phishing, identity attacks, endpoint detections, account compromise activity, and other security events.
- Develop scripts, automations, and operational workflows to improve efficiency and reduce manual effort.
- Create, maintain, and improve security run books, Standard Operating Procedures (SOPs), and incident response playbooks.
- Document investigations, findings, technical procedures, and operational processes.
- Assist with vulnerability management and remediation efforts.
- Coordinate with Infrastructure, Cloud, IT, and Engineering teams to resolve security findings.
- Research emerging threats, attack techniques, and security technologies.
- Utilize AI tools to improve research, scripting, documentation, troubleshooting, and engineering productivity.
- Recommend and implement improvements to security processes, detections, workflows, and automations.
- Participate in security projects and perform additional duties as assigned.
Required Qualifications
- Bachelor's degree in Cybersecurity, Cyber Operations, Systems Security Engineering, Computer Science, Information Assurance, or a related technical discipline.
- Three (3) or more years of experience in Information Security, Security Operations, or Security Engineering.
- Experience with Microsoft XDR.
- Experience with CrowdStrike Falcon.
- Experience with Microsoft Entra ID, including Risky Users and Identity Protection.
- Working knowledge of AWS, Microsoft Azure, and Google Cloud Platform (GCP).
- Experience investigating security incidents.
- Experience writing PowerShell, Python, or similar scripting languages.
- Experience developing automations and operational workflows.
- Experience creating, maintaining, and improving security run books, Standard Operating Procedures (SOPs), and incident response playbooks.
Technical Competencies
The ideal candidate should have experience with, or the ability to quickly become proficient in, the following:
- Security incident response and investigation.
- Endpoint Detection and Response (EDR/XDR) platforms.
- Security Information and Event Management (SIEM) platforms.
- Log analysis, event correlation, and threat hunting.
- Detection engineering and alert tuning.
- Identity and authentication investigations.
- Microsoft 365 and Microsoft Entra ID security investigations.
- Email security and phishing investigations.
- Vulnerability management and remediation workflows.
- PowerShell, Python, or similar scripting languages.
- Kusto Query Language (KQL) and/or Splunk Processing Language (SPL).
- Microsoft Graph API, REST APIs, and security automation.
- Cloud security investigations across AWS, Azure, and GCP.
- Developing and maintaining security run books, Standard Operating Procedures (SOPs), and incident response playbooks.
- Working knowledge of the NIST Cybersecurity Framework (CSF).
- Familiarity with the MITRE ATT&CK Framework and common adversary tactics, techniques, and procedures (TTPs).
- Strong understanding of enterprise technology, including Windows, Linux, networking fundamentals, identity systems, cloud infrastructure, and common enterprise architectures.
What We're Looking For
We're looking for an engineer. The ideal candidate is naturally curious and enjoys solving difficult technical problems. They don't stop at identifying an issue or escalating it to someone else. They take ownership, investigate thoroughly, and work toward implementing practical, long-term solutions.
You do not need to know everything. What matters is the ability to learn quickly, research effectively, experiment, and solve problems that don't already have documented answers.
Successful candidates will:
- Take ownership of complex technical challenges and drive them through resolution.
- Think critically, identify root causes, and solve problems rather than treating symptoms.
- Independently research unfamiliar technologies, products, APIs, and attack techniques.
- Build scripts, automations, and workflows that improve security operations.
- Develop practical solutions when existing tools or processes are insufficient.
- Continuously identify opportunities to improve security operations and business processes.
- Learn new technologies exceptionally quickly and apply them with minimal supervision.
- Be comfortable working through ambiguity, incomplete documentation, and unfamiliar technical environments.
- Leverage AI tools such as OpenCode, Claude, Gemini, GitHub Copilot, ChatGPT, or similar platforms to accelerate research, scripting, engineering, documentation, and troubleshooting while maintaining sound technical judgment.
- Demonstrate persistence and resourcefulness when solving problems that have no obvious solution.
If you're the type of engineer who enjoys figuring things out, building new capabilities, and leaving systems better than you found them, you'll fit in well on this team.
Desired Characteristics
- Excellent verbal and written communication skills.
- Highly proactive with a strong sense of ownership and accountability.
- Strong analytical, troubleshooting, and critical thinking skills.
- Exceptional organizational and documentation skills.
- Ability to communicate effectively with both technical and non-technical audiences.
- Comfortable collaborating across multiple technical teams.
- Positive attitude and continuous improvement mindset.
- High attention to detail and commitment to operational excellence.
Benefits at Babel Street (just to name a few...)
- Health Benefits: Babel Street covers 85-100% monthly premium costs for Medical, Dental, Vision, Life & Disability insurances – for you and your family!
- Retirement Plans: Babel Street offers both a Traditional and Roth 401(K) with a very competitive match.
- Unlimited Flexible Leave: We trust our employees to manage their own time and balance their personal and work lives.
- Holidays: Babel Street provides employees with 12 paid Federal Holidays
- Tuition Reimbursement: We are committed to investing in our employees. One way we do that is with our Tuition Reimbursement Program for continuing education.
Babel Street is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law. Further, Babel Street will not discriminate against applicants for inquiring about, discussing or disclosing their pay or, in certain circumstances, the pay of their co‐worker, Pay Transparency Nondiscrimination. In addition, Babel Street's policy is to provide reasonable accommodation to qualified employees who have protected disabilities to the extent required by applicable laws, regulations and ordinances where a particular employee works. Upon request, we will provide you with more information about such accommodations.
Range for this position based on qualifications and experience
$100,000 - $110,000 USD
Create a Job Alert
Interested in building your career at Babel Street? Get future opportunities sent straight to your email.
Apply for this job
*
indicates a required field
