SIEM/SOAR Consultant

Piper Companies is seeking a SIEM/SOAR Consultant to support a premier cybersecurity organization. The SIEM/SOAR Consultant will be responsible for developing and implementing log ingestion strategies, detection frameworks, and automation workflows using platforms such as Cortex XSOAR and Cortex XSIAM. This role is fully remote and ideal for candidates with deep experience in SIEM/SOAR technologies and security operations. 

Responsibilities of the SIEM/SOAR Consultant include: 

• Collaborate with technical leads to develop and refine log ingestion strategies 
• Contribute to detection strategies based on industry best practices and customer requirements 
• Document detailed step-by-step processes for ingesting high-quality log sources 
• Monitor and optimize log sources for performance and efficiency 
• Create and tune high-quality correlation and detection rules to enhance threat visibility 
• Identify opportunities for automation to improve analyst alert handling and response workflows 
• Serve as a Subject Matter Expert (SME) for SIEM, SOAR, correlation, and log source ingestion 
• Develop and implement custom XSOAR playbooks and automation workflows 
• Create technical documentation detailing SIEM/SOAR aspects of the engagement 
• Collaborate with internal and external teams to ensure successful product adoption 
• Travel to customer meetings and workshops as needed (up to 10%) 

Qualifications for the SIEM/SOAR Consultant include: 

• 6+ years of experience deploying and integrating SIEM and SOAR solutions in enterprise environments 
• Experience with Security Operation Centers tooling and processes 
• Proven ability to coordinate event collection, log management, compliance automation, and identity monitoring using SIEM platforms 
• Strong skills in Regular Expressions and log analysis 
• Experience with SIEM technologies such as Splunk, IBM QRadar, and Cortex XSIAM 
• Experience with SOAR platforms such as Cortex XSOAR, including playbook development 
• Ability to understand logs and locate/interpret third-party documentation 
• Familiarity with SIEM performance metrics (e.g., log collection rate, number of sources) 
• Knowledge of Security Analysis & Response across endpoint, network, and cloud environments 
• Relevant bachelor’s degree or industry-recognized certifications (CISSP, GIAC, SIEM/SOAR vendor qualifications) 

Compensation for the SIEM/SOAR Consultant includes: 

Salary: $130,000 – $150,000 

Comprehensive Benefits: Medical, Dental, Vision, 401K, PTO, Sick Leave as required by law, and Paid Holidays 

This job opens for applications on 8/21/2025. Applications for this job will be accepted for at least 30 days from the posting date. 

Keywords: 

#LI-MM1 #LI-REMOTE 

SIEM/SOAR Consultant, XSOAR, XSIAM, Cortex, Splunk, QRadar, Log Ingestion, Detection Strategy, Correlation Rules, Threat Detection, Security Automation, Security Operations, Cybersecurity, Regular Expressions, Playbooks, Endpoint Security, Network Security, Cloud Security, SOC, CISSP, GIAC