View all jobs

SIEM Engineer #1627

Austin, Texas · Information Technology
Security Information and Event Management (SIEM) Engineer
Contract – 12-24 months
Location – Austin, TX (Hybrid – 2 days onsite)

***Only applicants that are US Citizens or hold a full Green Card status may be considered for this project****

Come work for an organization that promotes a strong, collaborative culture with shared trust and goals to aid in protecting our statewide security systems. The SIEM Engineer will support building and maintaining a system that analyzes collected data and derives facts, inferences, and projections to determine if the systems being monitored are operating normally utilizing the Microsoft Sentinel SIEM solution.

  • Bachelor’s degree in Computer Science Information Assurance or a related discipline
  • Any of the following Security Certifications (CompTIA Network+, CompTIA Security+, Azure Certifications (AZ-500, AZ-700, AZ-305)
  • 5+ years of experience with Microsoft Sentinel and Azure
  • Some knowledge of other SIEM platforms, such as Splunk, QRadar or Chronicle
  • Thorough understanding of SIEM Capabilities - threat detection, through correlation and user and entity behavior analytics (UEBA), and response integrations commonly managed through security orchestration, automation, and response (SOAR)
  • Experience and knowledge of Microsoft security tools (Sentinel, Microsoft Defender for Cloud Apps, Microsoft Defender for Endpoint, etc)
  • Previous experience in a government agency environment is highly desirable
General Duties:
  • Primary responsibility for managing the Azure Sentinel SIEM solution
  • Aggregate the event data that is produced by monitoring, assessment, detection, and response solutions deployed across application, network, endpoint and cloud environments
  • Provide updates to correlations, alerting rules, customization of dashboards, views, and reports
  • Ensure proper implementations of Cloud Security best practices and design patterns
  • Generate supporting documentation (build books) on Sentinel solution, including logical diagrams and custom configurations, for use by our managed services group and clients
  • Work extensively with the multiple business units for log ingestion, data enrichment, and automation via the SIEM platform
  • Maintain strong technical understanding and proficiency in Sentinel and associated technologies, such as EDR/MDR, Azure AD, and Azure policy configuration
  • Develop technical solutions to automate repeatable tasks, including Sentinel notebooks and logic apps
  • Utilize tools and analytical skills to investigate the root cause of issues across the technologies
  • Provide overall guidance and instructions to clients

Genius Road, LLC is proud to be a Certified Women’s Business Enterprise, an Equal Opportunity Employer and values diversity. All employment is decided on the basis of qualifications, merit and business need.

Share This Job

Powered by