1

Security Operations Engineer Jobs in California (NOW HIRING)

Security Operations Engineer Astranis is looking for a Security Operations Engineer who isn't afraid to dive headfirst into the digital abyss. Our ideal candidate is a seasoned defender with the ...

THE ROLE As a Security Operations Engineer in the Global Information Security Office (GISO), you will lead the mission to reduce our global attack surface across cloud, endpoint, and SaaS ...

Senior Security Operations Engineer

San Francisco, CA · On-site

$134K - $185K/yr

What you'll do As a Security Operations Engineer at Brex, you will focus on preventing, detecting and responding to security threats across Brex's corporate and cloud environments. You will use ...

next page

Showing results 1-20

Security Operations Engineer information

See California salary details

$33.1K

$135.9K

$171.7K

How much do security operations engineer jobs pay per year?

As of Jul 5, 2026, the average yearly pay for security operations engineer in California is $135,941.00, according to ZipRecruiter salary data. Most workers in this role earn between $109,500.00 and $170,700.00 per year, depending on experience, location, and employer.

What is the difference between Security Operations Engineer vs Security Analyst?

AspectSecurity Operations EngineerSecurity Analyst
CertificationsCompTIA Security+, CISSP, CEHCompTIA Security+, GIAC Security Essentials
Work EnvironmentHands-on security infrastructure management, incident responseMonitoring, analyzing security data, reporting
Employer & Industry UsageIT security teams in various industries, focusing on security operations

The Security Operations Engineer focuses on managing security systems and responding to incidents, while the Security Analyst primarily monitors security data and analyzes threats. Both roles require similar certifications and work closely within security teams, but their daily tasks differ in scope and focus.

Can you make $500,000 a year in cyber security?

Security Operations Engineers can potentially earn $500,000 annually with extensive experience, advanced certifications, and roles in high-paying industries or senior leadership positions. Such salaries are typically achieved through senior-level roles, specialized skills, and often include bonuses or stock options.

What are some of the main challenges Security Operations Engineers face when responding to security incidents?

Security Operations Engineers often face challenges such as quickly identifying genuine threats among large volumes of security alerts, coordinating responses across multiple teams, and containing incidents before they escalate. Balancing thorough investigation with the need for rapid action can be demanding, especially in high-pressure situations. Additionally, staying updated on emerging threats and ensuring compliance with security protocols are ongoing responsibilities that require continuous learning and adaptability.

What Does a Security Operations Engineer Do?

As a security operations engineer, your job is to monitor a network or system and help implement new methods of protection and data recovery. In this role, you may conduct a vulnerability assessment for each emerging threat, coordinate with other security specialists, and help develop responses with industry peers. This job title refers to maintaining network security systems and should not be confused with non-electronic security operations, such as safeguarding VIPs or facilities. A security operations engineer works regular hours, but employers may call you in for emergency help as needed. This position usually reports to someone, such as a chief information security officer. You may occasionally brief executives or other managers on relevant topics, so presentation skills are helpful.

What are the key skills and qualifications needed to thrive as a Security Operations Engineer, and why are they important?

To thrive as a Security Operations Engineer, you need a solid understanding of network security, incident response, and vulnerability management, typically supported by a degree in computer science or a related field. Experience with SIEM tools (like Splunk or QRadar), firewalls, IDS/IPS, and certifications such as CISSP or CompTIA Security+ are commonly required. Strong analytical thinking, problem-solving abilities, and effective communication skills help you quickly detect and respond to security threats while collaborating with teams. These skills are crucial to proactively safeguarding organizational assets, minimizing risks, and ensuring swift recovery from security incidents.

What does a security operations engineer do?

A security operations engineer monitors, detects, and responds to cybersecurity threats and incidents within an organization. They use tools like security information and event management (SIEM) systems, perform vulnerability assessments, and implement security measures to protect IT infrastructure. Strong knowledge of network security, incident response, and relevant certifications such as CISSP or CEH are often required.

Is SOC an entry level job?

A Security Operations Center (SOC) analyst role can be entry level, but many positions require some prior knowledge of cybersecurity, networking, or security tools. Entry-level SOC jobs often focus on monitoring security alerts and basic incident response, while more advanced roles may require certifications like CompTIA Security+ or CISSP. Experience with SIEM tools and understanding of security protocols can improve job prospects.

What engineers make $500,000?

Senior security engineers, especially those with extensive experience, specialized skills, and certifications like CISSP or CISA, can earn $500,000 or more annually. High-level roles in cybersecurity often involve leadership, strategic planning, and working in large organizations or consulting firms, with compensation including base salary, bonuses, and stock options.
What are popular job titles related to Security Operations Engineer jobs in California? For Security Operations Engineer jobs in California, the most frequently searched job titles are:
What cities in California are hiring for Security Operations Engineer jobs? Cities in California with the most Security Operations Engineer job openings:
What are popular job titles related to Security Operations Engineer jobs in CA? For Security Operations Engineer jobs in CA, the most frequently searched job titles are:
Security Operations Engineer

Security Operations Engineer

Astranis

San Francisco, CA • On-site

Other

Posted 6 days ago


Job description

Security Operations Engineer

Astranis is looking for a Security Operations Engineer who isn't afraid to dive headfirst into the digital abyss. Our ideal candidate is a seasoned defender with the technical depth to not only triage complex threats but to oversee the very systems that keep us secure. As a Tier 2/3 escalation point, you will be the backbone of our defense, untangling advanced malware, neutralizing sophisticated phishing schemes, and leading high-stakes incident response operations.
In an environment where threats evolve at breakneck speed, we need a resourceful engineer who can engineer resilience, mentor junior analysts, and protect our digital frontier with precision.
Role

  • Advanced Incident Triage: Act as the Tier 2/3 escalation point for complex security events. Investigate and resolve high-severity incidents escalated from initial monitoring tiers.
  • System Oversight: Oversee and optimize security infrastructure, ensuring that Google SecOps (Chronicle) and other SIEM/SOAR tools are tuned for maximum visibility and efficiency.
  • Incident Leadership: Lead the charge during active incident response operations, coordinating across teams to contain threats and performing deep-dive post-incident forensics.
  • Malware & Threat Analysis: Perform deep-tissue analysis of malware to understand behavior and origins, using that intelligence to build proactive technical controls.
  • Detection Engineering: Create, integrate, and maintain custom security tools and automated playbooks to streamline the "detect-to-remediate" lifecycle.
  • Strategic Defense: Investigate advanced phishing vectors and implement systemic preventive measures; assist in high-level purple team exercises to validate our posture.
  • Operational Excellence: Maintain and mature security documentation, including technical procedures, complex runbooks, and internal security policies.

Requirements

  • 3-5 years of experience in a dedicated security operations or engineering role.
  • Tier 2/3 Expertise: Proven track record of handling complex escalations and leading incident response efforts.
  • Technical Depth: Advanced experience in malware analysis, digital forensics, and neutralizing sophisticated phishing campaigns.
  • Systems Mastery: Strong understanding of security standards, hardening principles, and the ability to oversee enterprise-grade security platforms.
  • Problem Solving: Exceptional analytical skills with the ability to think like an attacker to better defend the system.
  • Communication: Excellent written and oral communication skills, with the ability to translate technical findings into actionable leadership briefings.
  • Education/Experience: While we value experience, a degree in CS, Cybersecurity, or a related field is a plus.

Bonus

  • Certifications: Advanced certifications such as CISSP, GCIA, GCIH, or OSCP.
  • Platform Experience: Hands-on experience managing and tuning Google SecOps (Chronicle).
  • Automation: Experience with SOAR platforms or scripting (Python, Go) to automate response workflows.