Job Description

Job Title: SIEM Engineer

Location: Remote

Duration: 12+ Months Contract

Responsibilities

• Serve as the primary engineer managing the SIEM platform (IBM QRadar and/or Palo Alto XSIAM) for a State Government client.
• Deliver Managed Security Services with a focus on 24x7x365 availability, timely implementation, and accurate execution of security operations.
• Lead daily SIEM operations, collaborating with internal project teams and State cybersecurity personnel.
• Maintain platform health, perform upgrades, and manage sensors and collectors.
• Tune alerts and use cases in collaboration with SOC analysts and integrate with client systems.
• Onboard new log sources, configure alerts, and develop use cases in QRadar and/or XSIAM.
• Conduct QVM and Nessus SCSEM scans, triage findings, and fine-tune alerts.
• Ensure software solutions meet functional, non-functional, and compliance requirements.
• Develop and test code solutions, ensuring seamless integration into broader systems.
• Troubleshoot complex issues and assist in creating QRadar search queries and dashboards.
• Provide engineering and administrative support for large-scale Splunk environments.
• Design scalable frameworks for security automation, orchestration, and alert triage.
• Collaborate closely with Detection & Response leadership and other security teams

Required Skills

• IBM QRadar SIEM
• Palo Alto XDR / Cortex XSIAM
• Palo Alto EDR
• Nessus
• SIEM/SOC operations
• Use case development and tuning
• Security event triage and alerting
• Experience supporting enterprise security environments

Preferred Skills: Prior experience engaging with State agencies/employees as clients

Job Tags

Similar Jobs