Cybersecurity SIEM Systems Engineer

About The Position

Requirements

• 6+ years of experience with a bachelor's degree in computer science, Information Technology, Engineering, or related field.
• 10+ years of experience without a bachelor's degree.
• Experience in managing cybersecurity services for networks and environments.
• Experience with Federal, DoD, Army, and specific statutory, regulatory, and mandated directives.
• DoDM 8140.03 (former DoD 8570.01-M) Level 2 Certification within six months of starting position
• ITIL v4 foundation within six months of starting position
• Strong understanding of security operations and SIEM tools and technologies
• Experience with incident response tools and technologies (e.g., SIEM, threat intelligence platforms)
• Strong analytical and problem-solving skills
• Configuration Management/Document Management
• Applies extensive expertise and has full knowledge of other related disciplines. Work is performed without appreciable direction.
• Exercises considerable latitude in determining objectives and approaches to assignment. May function in a project leadership role.
• Develops solutions to complex problems which require a high degree of ingenuity, creativity and innovativeness.

Nice To Haves

• Master's degree in information technology, Cybersecurity, Data Science, Information Systems, Computer Science, or related field.
• Splunk Enterprise engineer, analyst, or similar certification
• AWS-SEC (AWS Certified Security - Specialty)
• MCASEA (Mobile Cloud Application Security Engineer Associate)
• GPEN (GIAC Certified Enterprise Defender)
• Experience with cloud-based solutions, including AWS, Azure, and/or Google Cloud.
• Experience with Configuration Management/Document Management.

Responsibilities

• Configuring, operating, maintaining, and supporting enhancements for SIEM tools to monitor, detect, and respond to threats on all supported networks and enclaves.
• Ensure security events are securely collected, appropriately formatted, ingested, and retained in accordance with the Enterprise Logging Standard.
• Integrating new data sources and retiring sources that are no longer required
• Developing custom integrations using scripting and Application Programming Interfaces (API)
• Performing data correlation, analysis, and reporting for all sensors and defense capabilities at an enterprise level.
• Implementing security orchestration and automation in support of security operations
• Incorporating new analytics, machine learning, and generative AI capabilities
• Monitoring event feeds for errors, outages, or degradations.

Benefits

• health, dental, and vision insurance
• health savings accounts
• a 401(k) savings plan
• disability coverage
• life and accident insurance
• employee assistance program
• a legal plan
• discounts on things like home, auto, and pet insurance
• paid time off
• paid holidays
• paid parental, military, bereavement, and any applicable federal and state sick leave
• company recognition program to receive monetary or non-monetary recognition awards