About The Position
The Cybersecurity SIEM Engineer will play a critical role in strengthening the organizationâs security posture by implementing, tuning, and maintaining Security Information and Event Management (SIEM) tools and related components. This role provides hands-on technical expertise to detect, analyze, and respond to cybersecurity threats across on-premises and cloud environments. Collaborating closely with IT and cybersecurity teams, the engineer will design workflows, integrations, and automated tasks to maximize SIEM effectiveness while ensuring secure data retention. The position offers an opportunity to work on complex, live environments, support infrastructure visibility and analysis, and contribute to the continuous improvement of cybersecurity programs. The role combines autonomy with collaboration in a dynamic and mission-critical technology environment.
Requirements
- Bachelorâs degree in a related field with 5+ years of relevant experience, or Masterâs degree with 3+ years of experience, or equivalent education/experience.
- Self-starter with the ability to work independently and collaboratively.
- Strong critical thinking and problem-solving skills.
- Excellent written and verbal communication skills, including active listening, presentations, and documentation.
- HSPD-12 compliant credential.
- Professional security and/or systems engineering certifications such as GIAC (SANS), Security+, or CISSP, or evidence of pursuing certification.
- Experience in SIEM engineering roles, including tool selection, installation, tuning, and maintenance.
- Technical proficiency in Windows and Linux systems, TCP/IP networking, Bash scripting, and security defense measures.
- Intermediate programming/scripting skills, preferably Python, for security orchestration and automation.
- Experience managing tools and infrastructure in production environments.
- Familiarity with cybersecurity concepts, threat detection, and mitigation.
Nice To Haves
- Experience with Splunk SIEM, Cribl, and cloud security architectures (AWS, Azure, Google Cloud).
Responsibilities
- Operate, maintain, and optimize SIEM tools and components, including log aggregators, forwarders, and data observability systems.
- Test, implement, and tune both on-premises and cloud-based environments to support infrastructure visibility, security analysis, and automation.
- Develop and maintain content, workflows, and integrations to enable cybersecurity teams to fully leverage SIEM capabilities.
- Collaborate with IT and cybersecurity teams to integrate SIEM with analysis platforms and system management tools.
- Document system architecture, operational procedures, and configurations to ensure clarity and maintainability.
- Contribute to projects that enhance the efficiency and effectiveness of cybersecurity programs, including workflow improvements, automation initiatives, and user awareness training.
Benefits
- Competitive total compensation with paid leave.
- Employer-sponsored medical, dental, and vision coverage.
- Short-term and long-term disability, life insurance, AD&D coverage, legal services, identity theft, and accident insurance.
- Flexible Spending Account (FSA) and Health Savings Account (HSA) options for pre-tax savings.
- Employer-sponsored 401(k) plan with immediate vesting of contributions.
- Professional growth opportunities including courses, certifications, and tuition reimbursement.
- Supportive and inclusive work environment with equal employment opportunities for all employees.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
