SIEM Engineer
About The Position
The SIEM Engineer is responsible for the design, deployment, maintenance, optimization, and continuous improvement of the organization's Security Information and Event Management platform. This position ensures security telemetry is collected, normalized, enriched, retained, and analyzed effectively. The engineer develops correlation rules, dashboards, reports, use cases, and alerting logic that enable the SOC to detect threats accurately and efficiently. The SIEM Engineer works closely with SOC analysts, threat hunters, incident responders, cloud engineers, and infrastructure teams to ensure comprehensive visibility across the enterprise environment. The position is responsible for maintaining platform performance, onboarding new log sources, improving detection coverage, and supporting compliance reporting requirements.
Requirements
- Deep knowledge of SIEM architecture, log management, security monitoring, event correlation, detection engineering, and enterprise security operations.
- Experience working with large-scale SIEM platforms.
- Experience with cloud security logs, endpoint telemetry, network security logs, identity systems, and threat intelligence integration.
- Strong analytical and technical skills.
- Experience with query languages, data parsing, data normalization, use case development, and performance optimization.
Responsibilities
- Design, deployment, maintenance, optimization, and continuous improvement of the SIEM platform.
- Ensure security telemetry is collected, normalized, enriched, retained, and analyzed effectively.
- Develop correlation rules, dashboards, reports, use cases, and alerting logic.
- Maintain platform performance.
- Onboard new log sources.
- Improve detection coverage.
- Support compliance reporting requirements.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
