Responsibilities
- Design, deploy, and support SIEM systems using platforms such as Splunk, Microsoft Sentinel, Elastic, Google SecOps, CrowdStrike NG-SIEM, Palo Alto XSIAM, and SentinelOne SIEM
- Build and oversee log data pipelines using tools like Cribl Stream, Edge, or Search, or equivalent technologies
- Improve data flow through routing, enrichment, and filtering to enhance system performance and reduce operational costs
- Work closely with cybersecurity, DevOps, and cloud teams to connect telemetry sources and expand visibility
- Create custom parsing logic, dashboards, correlation rules, and alert mechanisms for threat identification and analysis
- Ensure logging infrastructure remains reliable, scalable, and high-performing
- Advise on strategies for log standardization, data storage, and retention policies
- Support incident investigations and perform root cause analysis using SIEM-derived intelligence
- Guide junior team members and support long-term security monitoring strategy development
Work Arrangement
Remote
Other
- Candidates based on the U.S. East Coast are preferred to match team availability and client support needs
- Occasional travel may be necessary depending on the role
- On-site presence may be required for positions involving federal clients
- Health insurance options include a Zero Deductible PPO Plan (90% premium covered for employees, 70% for families) or a High Deductible Health Plan with HSA (100% employee premium covered, 75% for families); annual HSA contributions of $500 for individuals or $1,000 for families
- Dental insurance: 100% of employee premiums covered, 75% for family plans
- 12 company-observed holidays and a Flexible Time Off (FTO) policy
- Monthly stipend for mobile phone and home internet expenses
- Eligibility to join retirement plan after two months, with enrollment during open periods
- Optional pet insurance benefit available to employees
