Job title: Sr. SIEM Engineer
Job type: Permanent
Emp type: Full-time
Salary type: Annual
Salary: USD $170,000.00
Location: Remote
Job published: 2024-10-23
Job ID: 32390
Contact name: Ross Gisondi
Phone number: +19293951228
Contact email: ross.gisondi@hamptonnorth.com

Job Description

Role Overview:
We are seeking a Senior SIEM Engineer to take on key responsibilities in managing and optimizing security infrastructure at scale. In this role, you’ll have the opportunity to solve complex technical problems, develop new solutions from scratch, and contribute to security initiatives across diverse environments. You'll operate with a high level of autonomy while being supported by senior leadership.

 

Salary: $140,000-$170,000

Logistics: 100% Remote, US

 

Here's what you'll be doing:

  • Install, configure, and maintain SIEM platforms to ensure peak performance.
  • Provide expertise in data collection across operating systems, applications, appliances, and networks.
  • Develop dashboards, reports, and analytics to improve visibility and monitoring using SIEM tools.
  • Maintain and enhance engineering and security documentation.
  • Lead security engineering projects to improve and scale infrastructure.
  • Collaborate with stakeholders to align security goals with business objectives.
  • Provide security-focused guidance throughout design, deployment, and maintenance phases.
  • Continuously improve security standards and practices for both new and existing infrastructure.
  • Participate in on-call rotations for after-hours support when needed.
  • Occasional travel may be required for specific initiatives.

And here's what you'll need:

  • Strong understanding of data normalization, log aggregation, and correlation.
  • Experience with intrusion detection and threat management tools.
  • Expertise with SIEM platforms (e.g., Splunk, Elastic, Graylog, Securonix).
  • Familiarity with hybrid, cloud, and on-premises environments.
  • Proficiency with Infrastructure-as-Code tools (e.g., Terraform, CloudFormation).
  • Experience with host-based security tools (e.g., HIDS, IPTables, ModSecurity).
  • Working knowledge of configuration management tools (e.g., Ansible, Puppet, Salt, Chef).
  • Experience with virtualization technologies (e.g., VMware, KVM, Hyper-V, OpenStack).
  • Strong leadership abilities with experience mentoring junior team members.
  • Skilled in incident, request, and change management processes using ticketing systems.
  • Prior experience in a security engineering role focused on SIEM platforms.
  • Strong working knowledge of Linux and Windows operating systems.
  • Familiarity with scripting and automation to streamline workflows.
  • Understanding of EDR and MDR platforms for enhanced threat detection and response.
  • Demonstrated ability to troubleshoot and manage complex systems.
  • Strong communication skills with the ability to document processes and share knowledge effectively.
  • A collaborative mindset, with the ability to work effectively across teams and mentor others.