Platform SIEM Engineer II
New
D
DeepwatchCybersecurity
While proximity to Tampa is preferred to support a hybrid schedule in our Tampa Center of Excellence, we’re open to remote candidates who can support the Eastern Time Zone., Eastern Time ZoneFull-TimeMiddle
Salary130,000 - 150,000 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 2+ years
- Required Skills
- PythonLinux
Requirements
- 2+ years of experience in SIEM administration, security operations, or a related field
- Hands-on experience with at least one SIEM platform (Splunk, Microsoft Sentinel, Google SecOps, Securonix, CrowdStrike NG SIEM, or Palo Alto XSIAM)
- Understanding of log data pipelines, parsing, normalization, and troubleshooting
- Ability to administer and troubleshoot Linux and Windows systems
- Experience working with cloud platforms such as AWS, Azure, or GCP
- Ability to independently troubleshoot operational issues and manage priorities
- Clear communication skills for technical and non-technical audiences
- Experience with scripting in Python, Bash, or PowerShell
- Relevant security or cloud certifications
Responsibilities
- Provide first line support of production impacting issues
- Monitor, manage, and optimize SIEM platform performance
- Maintain, manage, and troubleshoot log collection solutions on Linux and Windows
- Identify and remediate critical log ingest gaps
- Communicate with leadership and support roles
- Manage ticket request/incident statuses
- Participate in projects/initiatives
- Document network architectures and topologies
- Keep up-to-date with information security news, techniques, and trends
View Full Description & ApplyYou'll be redirected to the employer's site
