- Work with technical lead to develop log ingestion strategy
- Contribute to detection strategy based on industry best practices
- Detail step-by-step process to ingest high-quality log sources
- Perform log source monitoring and optimization
- Create high-quality correlation rules
- Tune log sources and correlation rules
- Be an Subject Matter Expert (SME) for SIEM, Correlation, and Log Source Ingestion
- Recognize opportunities where automation can improve analyst alert handling
- Collaborate with internal and external teams to ensure product adoption
- Create technical documentation detailing SIEM aspects of the engagement
- Travel to customer meetings and workshops as needed (10%)
- 6+ years of deploying and integrating (SIEM) to enterprise to large enterprise-level
- Coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring activities using (SIEM) platforms
- The ability to create and develop correlation and detection rules, within a (SIEM) to support alerting capabilities
- Experience working with and deploying a variety of SIEM technologies (i.e. Splunk, IBM QRadar)
- Strong Regular Expression skills
- Ability to understand logs, locating and understanding 3rd party documentation where needed
- Familiarity with reports on the status of the SIEM to include metrics on items such as number of logging sources - log collection rate, and other performance metrics
- Knowledge of Security Analysis & Response a plus, including both endpoint, network & cloud-based environments
- Experience with Security Operation Centers tooling and processes
- Salary: $120,000 - $160,000
- Full benefits: Healthcare, Dental, Vision, 401k, Flexible work schedule
-
Cyber Security Engineer
2 weeks ago
Cornerstone Defense McLean, United StatesTitle: Cyber Security Analyst · Location: Mclean, VA · *Clearance: · *Active TS/SCI w/ Polygraph needed to apply * · Company Overview: · Cornerstone Defense is the Employer of Choice within the Intelligence, Defense, and Space communities of the U.S. Government. Realizing ea ...
-
Lead Cyber Detection Engineer
5 days ago
Cyber Crime McLean, United StatesAre you interested in defending the most coveted targets in the world? Is advancing today's technology for tomorrow's threats to national security constantly on your mind? Then Join ManTech and help protect our country against our adversaries while working on innovative projects ...
-
Sr. Cyber Systems Security Engineer
6 days ago
Piper Companies McLean, United StatesPiper Companies is seeking a Senior Cyber Systems Security Engineer. · As the Senior Cybersecurity Engineer, you should be customer and solution oriented. Also, dedicated to enabling tools and processes that protect systems and information to ensure confidentiality, integrity, a ...
-
Cybersecurity Technical Consultant
5 days ago
MAXIMUS McLean, United StatesCybersecurity Technical Consultant - DoD · Maximus · At the federal, state, and local level, we transform public policy into programs that change lives. · View company page · Are you passionate about protecting the nation's critical infrastructure and enabling mission success ...
-
Cyber Security Analyst
5 days ago
Cornerstone Defense McLean, United StatesTitle:Cyber Security Analyst · Location: McLean, VA · *Clearance: · *Active TS/SCI w/ Polygraph needed to apply * · Company Overview: · Cornerstone Defense is the Employer of Choice within the Intelligence, Defense, and Space communities of the U.S. Government. Realizing ear ...
-
Cloud Security Engineer, Senior
2 days ago
Booz Allen Hamilton McLean, United StatesJob Number: R0197159 · Cloud Security Engineer, Senior The Opportunity: · Everyone is trying to "harness the cloud," but not everyone knows how to secure it. As a cloud security engineer, you know how to assess and implement requirements that ensure the safety of information sy ...
-
Booz Allen Hamilton McLean, United StatesJob Number: R · Identity and Access Management Engineer, Lead · Key Role: · Create solutions for that will stand up to even the most advanced Cyber threats. Identify the right mix of tools and techniques to translate your customer's needs and future goals into a plan that will ...
-
Manager, Cyber Product Owner
6 days ago
Hispanic Technology Executive Council McLean, United StatesCenter , United States of America, McLean, VirginiaManager, Cyber Product Owner (Detection and Mitigation Solutions) · Capital One is seeking a product owner to help deliver game-changing cybersecurity solutions based on threat, data, and design thinking. At Capital One, we beli ...
-
Senior IT Engineer
1 week ago
ID Inc McLean, United StatesCompany Overview · is a high-growth enterprise software company that simplifies how people prove and share their identity online. The company empowers people to control their data through a portable and trusted login, which means they don't need to create a new password when vis ...
-
Senior IT Engineer
1 week ago
ID Inc McLean, United StatesCompany Overview · is a high-growth enterprise software company that simplifies how people prove and share their identity online. · The company empowers people to control their data through a portable and trusted login, which means they don't need to create a new password when ...
-
Azure Technical Architect
4 days ago
EY McLean, VA, United States Paid WorkEY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities. At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the b ...
Remote SIEM Engineer - McLean, United States - Piper Companies
Description
Piper Companies is seeking a Remote SIEM Engineer (Cortex XSIAM) to join a premier cyber security organization. The SIEM Engineer will work with clients to determine a suitable detection strategy, helping to protect customers from threats, by designing and implementing correlation rules.
Responsibilities of the SIEM Engineer include: