Senior Endpoint Engineer Jobs in Orem, UT (NOW HIRING)

We're in an unbelievably exciting area of tech and are fundamentally reshaping the data storage industry. Here, you lead with innovative thinking, grow along with us, and join the smartest team in the industry.
This type of work-work that changes the world-is what the tech industry was founded on. So, if you're ready to seize the endless opportunities and leave your mark, come join us.
THE ROLE
You will partner with the security operations lead and broader security team to develop and mature security use cases that apply across the company's environment and operations. Your mission is to build and refine the detections, policies, and response logic that enable the team to identify real attacks, misuse, intrusions, and data loss events with speed and confidence.
This is not a passive monitoring role. You will be expected to understand how the business operates, how attackers move, where meaningful signals live, and how to translate that knowledge into durable security content and response workflows. Success in this role is measured not by alert volume, but by signal quality, attack reduction, faster containment, and continuous operational improvement.
WHAT YOU'LL DO

• Design, implement, and maintain high-fidelity detections, correlation rules, alerts, dashboards, and use cases in Splunk and related security platforms.
• Build detections across multiple data domains, including identity, endpoint, network, cloud infrastructure, SaaS applications, DLP, vulnerability, and asset posture.
• Correlate signals from diverse tooling and data sources to identify attacker behavior, misuse, anomalous activity, and material security risk.
• Partner with business units, IT, engineering, and internal security stakeholders to map business processes and workloads to security use cases and required telemetry.
• Support and participate in incident triage, investigation, containment, and post-incident improvement activities.
• Develop enrichment and automation workflows using Python, APIs, and security tooling to improve analyst efficiency and response consistency.
• Improve detection quality by tuning noisy alerts, reducing false positives, and increasing true positive rates.
• Collaborate on logging strategy, event onboarding, normalization, parsing, correlation, retention, reporting, and platform customization.
• Apply threat intelligence, attacker tradecraft, and frameworks such as MITRE ATT&CK, CVE/CVSS, and risk context to drive meaningful detections.
• Create playbooks, runbooks, detection documentation, and operational guidance for responders and analysts.
• Use lessons learned from incidents, hunts, and threat research to continuously improve content, coverage, and response workflows.
• Help mature a security operations model that brings together detection, alerting, investigation, and response rather than treating them as isolated functions.
• We are primarily an in-office environment and therefore, you will be expected to work from the Lehi, UT office in compliance with Everpure's policies, unless you are on PTO, or work travel, or other approved leave.

WHAT YOU BRING

• 6+ years of experience in cybersecurity, or a related technical field
• 3+ years of hands-on experience in incident response, detection engineering, security operations, or SIEM engineering
• Strong hands-on experience with a SIEM platform; direct experience with Splunk is strongly preferred
• Solid understanding of the incident response lifecycle, including triage, scoping, containment, eradication, recovery, and post-incident learning
• Strong understanding of foundational networking, systems, cloud, and security principles
• Ability to write scripts and automate tasks using Python or a similar language
• Ability to work with APIs, integrate data sources, and automate enrichment or response actions
• Strong analytical thinking and the ability to translate ambiguous threats or operational gaps into concrete detection logic
• Excellent written and verbal communication skills, with the ability to collaborate effectively across technical and non-technical teams
• Bachelor's degree in Computer Science, Information Security, Engineering, or a related technical field

#LI-TH3, #LI-ONSITE
Salary ranges are determined based on role, level and location. For positions open to candidates in multiple geographical locations, the base salary range is reflective of the labor market across the applicable locations.
This role may be eligible for incentive pay and/or equity.
There is no application deadline and we accept applications on an ongoing basis until the job is filled.
The annual base salary range is:
$120,000-$180,000 USD
WHAT YOU CAN EXPECT FROM US:

• Innovation: We celebrate those who think critically, like a challenge, and aspire to be trailblazers.
• Growth: We give you the space and support to grow along with us and to contribute to something meaningful. We have been named Fortune's Best Workplaces in Technology™, Fortune's Best Workplaces in the Bay Area™, and certified as a Great Place to Work®!
• Team: We build each other up and set aside ego for the greater good.

And because we understand the value of bringing your full and best self to work, we offer a variety of perks to manage a healthy balance, including flexible time off, wellness resources, and company-sponsored team events. Check out purebenefits.com for more information.
ACCOMMODATIONS AND ACCESSIBILITY:
Candidates with disabilities may request accommodations for all aspects of our hiring process. For more on this, contact us at TA-Ops@purestorage.com if you're invited to an interview.
OUR COMMITMENT TO A STRONG AND INCLUSIVE TEAM:
We're forging a future where everyone finds their rightful place and where every voice matters. Where uniqueness isn't just accepted but embraced. That's why we are committed to fostering the growth and development of every person, cultivating a sense of community through our Employee Resource Groups and advocating for inclusive leadership.
Everpure is proud to be an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or any other characteristic legally protected by the laws of the jurisdiction in which you are being considered for hire.
Join us and bring your best.
Bring your bold.
Pure and simple.