Digital Turbine

mobile advertising

PrincipalEngineer,SecurityOperations

Tipp City, Ohio, United States FULL TIME

The Brief

“Principal Engineer, Security Operations at Digital Turbine. Skills: detection engineering, incident response, cloud security operations, SOC functions, GCP, AWS. Serve as the primary technical authority for Digital Turbine’s SOC ecosystem and cloud threat detection strategy. Optimize and mature our relationship with a Managed Security Services Provider (MSSP), ensuring detection quality, response speed, and continuous tuning meet DT’s requirements”

What You'll Achieve.

ensure resilient 24x7 monitoring and response capabilities; ensure detection quality, response speed, and continuous tuning meet DT’s requirements; maximize visibility and protection coverage; strengthen DT’s overall security posture

Industry & Context.

mobile advertising

Problems you'll solve

analytical skills; complex incident investigations

Eligibility Requirements

hybrid work environment-only candidates local to the posting location will be considered

What They're Looking For.

Must Have

12+ years of cybersecurity experience with deep expertise in security operations, threat detection, or incident response within global enterprise or SaaS environments, Significant hands‑on experience developing and managing SOC functions for GCP and AWS, including cloud logging, monitoring, and automation, Proficiency with SOC tooling such as CrowdStrike, Orca, SIEM/SOAR platforms, and related telemetry and automation tools, Deep understanding of modern adversary tradecraft, cloud attack paths, and detection engineering frameworks, Experience supporting or interfacing with compliance programs such as SOC 2, ISO 27001, or SOX, Excellent analytical and communication skills, with the ability to present technical findings and risks to both engineers and executives

Nice to Have

Advanced security certifications such as CISSP, GCIH, GCFA, CISM, or CCFR are highly desirable, Google Cloud certifications (e. g. , Professional Cloud Security Engineer, Professional Cloud Architect) preferred, familiarity with MSSP models, understanding how to measure and improve service quality through engineering insight and data

What You'll Do.

Serve as the primary technical authority for Digital Turbine’s SOC ecosystem and cloud threat detection strategy

Optimize and mature our relationship with a Managed Security Services Provider (MSSP)

ensuring detection quality

and continuous tuning meet DT’s requirements

Lead and execute complex incident investigations

and remediation across GCP

and containerized workloads (Kubernetes

Design and maintain advanced detection and automation use cases using SIEM

and log management platforms

tailored to DT’s cloud environments

Operationalize and fine‑tune tools such as CrowdStrike

and related platforms to maximize visibility and protection coverage

and enhance incident response playbooks and threat‑hunting methodologies aligned with MITRE ATT&CK and industry best practices

and execute tabletop exercises

as well as business continuity (BC) and disaster recovery (DR) drills

to validate response readiness and cross‑team coordination

Define and track SOC performance metrics (e. g.

producing clear and actionable insights for leadership and technical stakeholders

Collaborate with DevOps

application engineering

and legal teams to embed operational security practices that support compliance and business goals

Contribute to vendor selection

and threat intelligence initiatives that strengthen DT’s overall security posture

Act as a mentor and thought leader for peers and cross‑functional partners on detection engineering

and cloud security best practices

How You'll Work.

Team & Collaboration

partnership with internal and external teams; Collaborate with DevOps, application engineering, GRC, and legal teams; mentor and thought leader for peers and cross‑functional partners

Communication Scope

Excellent analytical and communication skills; ability to present technical findings and risks to both engineers and executives

Free ATS check

Applying for this Principal Engineer, Security Operations role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

Skill Signal 39 detected

Core

detection engineering ×6

incident response ×6

cloud security operations ×6

SOC functions ×5

threat detection ×4

cloud logging ×4

cloud monitoring ×4

automation ×4

Required

GCP ×3

AWS ×3

security operations ×3

SOC tooling ×3

SIEM/SOAR platforms ×3

telemetry ×3

adversary tradecraft ×3

cloud attack paths ×3

compliance programs ×3

incident investigations ×3

Nice to have

Kubernetes

serverless

technical leadership

operational excellence

threat-hunting methodologies

vendor selection

tooling evaluation

threat intelligence

Behavioural

partnership with internal and external teams

mentor

thought leader

Role Details

Seniority

senior

Work Mode

hybrid

Type

FULL TIME

Experience

12–15 yrs

AI-Extracted Insights

Domain Areas

mobile-advertising-experiences

saas-environments

modern-adversary-tradecraft

cloud-attack-paths

compliance-programs-soc-2

iso-27001

sox

mitre-att-ck

Certifications

CISSP

GCIH

GCFA

CISM

CCFR

Google Cloud Professional Cloud Security Engineer

How to Apply on Workday

Workday has a multi-step form — save your progress after every section.
"Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
Job requisition numbers are useful when following up with HR by email.

ANONYMOUS · UNFILTERED

What do employees actually say about Digital Turbine?

Real rants from real employees. Read before you apply.

Read Company Rants →