SIEM Consultant

Piper Companies is seeking a Remote SIEM Engineer (Cortex XSIAM platform) to join a premier cyber security organization. The SIEM Engineer will work with clients to determine a suitable detection strategy, helping to protect customers from threats, by designing and implementing correlation rules. This job opens for applications on 2/24/2025. Applications for this job will be accepted for at least 30 days from the posting date.

Responsibilities of the SIEM Engineer include:

• Work with technical lead to develop log ingestion strategy
• Contribute to detection strategy based on industry best practices
• Be an Subject Matter Expert (SME) for SIEM, Correlation, and Log Source Ingestion
• Recognize opportunities where automation can improve analyst alert handling
• Create technical documentation detailing SIEM aspects of the engagement
• Travel to customer meetings and workshops as needed (10%)

Qualifications for the SIEM Engineer include:                                                                        

• 6+ years of deploying and integrating (SIEM) to enterprise to large enterprise-level
• Coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring activities using (SIEM) platforms
• Experience working with and deploying a variety of SIEM technologies (i.e. Splunk, IBM QRadar)
• Familiarity with reports on the status of the SIEM to include metrics on items such as number of logging sources - log collection rate, and other performance metrics
• Knowledge of Security Analysis & Response a plus, including both endpoint, network & cloud-based environments
• Bachelor's Degree in Computer Science, Network Engineer, or comparable technical fields preferred

Compensation for the SIEM Engineer includes:

• Salary: $140,000 – $160,000 | $75/hr - $80/hr
• Comprehensive Benefits: Medical, Dental, Vision, 401K, PTO, Sick Leave as required by law, and Holidays

Keywords: #LI-JD3 #LI-REMOTE

SOAR, XDR, SIEM, Python, MITRE, ATT&CK, Map, Mapping, investigation, investigate, ransomware