SOC Platform Engineer

Top 3 reasons to join us

• Production systems operate at large scale.
• Problems are owned end to end.
• Changes enable systems behind core operations.

Job description

🎯 About the role

We are building a next-generation internal SOC platform focused on large-scale log processing and querying, detection & alerting pipelines, and incident response automation (SOAR). This role is for engineers who want to build security systems from the ground up — from ingestion to detection to response — rather than simply operating a SOC.

You will work at the intersection of distributed systems, security detection, and automation, with a focus on applying AI to reduce noise and accelerate incident handling.

🧠 What You’ll Do

• Design and build security monitoring, detection, and alerting systems
• Architect and develop large-scale log processing pipelines (ingestion → detection → alerting)
• Develop detection logic and continuously improve alert quality
• Build and automate Incident Response workflows (SOAR)
• Optimize storage, querying, and processing performance for security data
• Research and integrate open-source solutions within the SOC ecosystem
• Design log collection architecture and strategy across Kubernetes, VMs, and cloud environments 

🚀 Key Projects

• Build an end-to-end internal SOC platform (ingestion → detection → response)
• Apply AI/ML to improve detection accuracy and reduce false positives
• Optimize performance and scalability of the log processing infrastructure

Your skills and experience

🌟Must-have

• Experience building or operating systems related to logging, monitoring, security, or SOC
• Experience working with distributed systems or high-throughput backend infrastructure
• Proficiency in Golang and/or Java in a production environment

🧩Nice to Have

• Hands-on experience with SIEM, SOAR, EDR, or real-world SOC environments
• Understanding and practical application of MITRE ATT&CK in detection engineering
• Experience processing large-scale logs using ELK, ClickHouse, Kafka, or similar
• Experience with or strong interest in applying AI/ML in security contexts

Why you'll love working here

Inside our lean engineering team:

• We work on large and complex systems, with a focus on ownership and continuous learning.
• We work within existing constraints and improve systems incrementally.
• We value strong fundamentals and the ability to reason through unfamiliar or complex systems.
• Collaboration is direct, and discussions focus on solving problems and delivering results.

Our offers include: 

• MacBook provided
• Full salary insurance
• Health care insurance
• 19 leave days
• Annual health check-up