Senior SIEM & Detection Engineer

About The Position

Requirements

• Strong, hands-on experience with Microsoft Sentinel
• KQL authoring and optimization
• Analytic rule tuning
• Experience with Microsoft Defender XDR
• Alert interpretation and correlation
• Proven background in SIEM alert tuning and detection engineering
• Ability to work independently and make judgment calls on detection value
• Comfortable operating in a live SOC environment during off-hours

Nice To Haves

• Experience in regulated or audit-heavy environments
• Familiarity with ServiceNow or Jira-based intake/work tracking
• Experience working with multiple SIEM instances (e.g., security + fraud)
• Exposure to Microsoft Security Copilot (not required)

Responsibilities

• Tune and rationalize alerts in Microsoft Sentinel and Microsoft Defender XDR
• Reduce false positives and alert fatigue
• Improve signal quality and detection confidence
• Identify redundant, outdated, or low-value detections
• Validate detections against real telemetry and execution context
• Provide engineer-level coverage during the 3–11 PM EDT shift
• Capture baseline detection logic and data dependencies as part of cleanup work

Benefits

• Medical, dental & vision
• Critical Illness, Accident, and Hospital
• 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
• Life Insurance (Voluntary Life & AD&D for the employee and dependents)
• Short and long-term disability
• Health Spending Account (HSA)
• Transportation benefits
• Employee Assistance Program
• Time Off/Leave (PTO, Vacation or Sick Leave)