Security Operations Engineer

Position Title: Security Operations Engineer

Location: Islamabad

Department: Security Operations

Job Timings: 10 am – 6 pm

About The Role

As a Security Operations Engineer at AIOAPP, you will play a key role in safeguarding our systems by identifying, analyzing, and responding to cybersecurity threats in real time. You will work closely with our Security Operations Center (SOC) to detect and mitigate incidents, reduce risk exposure, and enhance threat detection across our cloud and on-premises infrastructure.

What will be your responsibilities?

• Monitor, validate, and analyze security events and alerts across AWS Cloud, SaaS applications, and on-premises infrastructure.
• Investigate CloudTrail, CloudWatch, VPC Flow Logs, and other relevant logs and telemetry to detect and respond to potential threats.
• Design, implement, and fine-tune detection use cases and alerts within AWS and on-prem environments.
• Triage and prioritize incoming security alerts, incidents, and privacy-related events.
• Proactively identify vulnerabilities and enhance SIEM use cases for broader detection coverage.
• Provide on-call support for critical incident response and urgent threat scenarios.
• Ensure timely communication and escalation of incidents per SOC protocols.
• Integrate and analyze threat intelligence feeds to improve detection capabilities.
• Maintain detailed incident records in Jira, ensuring timely updates and SLA compliance.
• Lead the development of actionable detection logic and support log parsing, rule validation, and false positive reduction.

What are we looking for and what does it require to be the right fit for this role?Qualifications

• Bachelor's degree in Computer Science, Information Systems, or a related field.
• 3+ years of hands-on experience in a Security Operations Center or related cyber defense roles.
• Solid understanding of cybersecurity frameworks and methodologies (e.g., MITRE ATT&CK, Cyber Kill Chain, NIST).

Technical Experience

• Experience working in a 24x7 enterprise security operations environment.
• Strong familiarity with AWS services and infrastructure (e.g., EC2, VPC, IAM, CloudTrail, GuardDuty).
• Sound knowledge of cloud security architecture and virtualized environments.
• Proficient in Linux/Unix systems, web protocols, and system hardening practices.
• Experience in mitigation, log analysis, threat hunting, and forensic investigations.
• Working knowledge of firewalls, IDS/IPS, vulnerability scanners, and IAM technologies.
• Experience in SOC, Threat Hunting, or Threat Intelligence.
• Proficiency with SIEM tools and alert tuning (e.g., Logsign, Wazuh, ELK Stack).
• Strong analytical, documentation, and problem-solving skills.
• Excellent verbal and written communication abilities.

Nice to Haves

• Experience with SOAR platforms and scripting (Python, PowerShell) for automation.
• Familiarity with security compliance standards such as ISO 27001, PCI DSS, or SOC 2.
• Experience using Jira, Confluence, or similar ticketing/documentation platforms.

Why Join AIO?

Our mission is to revolutionize the US restaurant industry by providing a comprehensive and fully integrated solution that empowers restaurant owners to efficiently manage all aspects of their businesses. Our platform, designed to meet the unique challenges (post COVID-19) faced by restaurants, combines our patented AI technology with unparalleled customer support to help owners increase revenue, reduce costs, and improve their overall profit margins.

We believe that restaurants should be able to focus on delivering exceptional dining experiences to their customers, without the added stress of managing complex and disparate systems. That's why we offer an All-In-One super app platform for all of their needs, from front-of-the-house operations like ordering, payment, marketing and rewards, to back-of-the-house management like inventory, staff, and financials.

We are laser focused to become a significant player in the $55 billion restaurant tech SaaS market. You will be a part of a world class silicon valley funded stealth mode startup.

#J-18808-Ljbffr

---