SIEM Architect
We are seeking a seasoned information security professional to join our team supporting mission-critical cyber operations in a secure government environment. Whether you're skilled with SIEM operations or experienced in designing enterprise-grade SIEM solutions, this is an exceptional opportunity to work on national cyber initiatives with long-term potential.
Key Responsibilities:
* Operate, optimize and maintain SIEM platforms in a secure environment.
* Develop and refine use cases and correlation rules for enhanced detection.
* Manage data ingestion and integration from multiple log sources.
* Collaborate with SOC analysts and cyber teams to improve detection capabilities.
* Design and architect scalable and resilient SIEM solutions.
* Lead development of use case libraries, onboarding strategies, and integration patterns.
* Develop architectural roadmaps and guide SIEM platform evolution.
* Provide expert input to stakeholders on SIEM design and optimization.
Requirements:
* Experience with SIEM tools (e.g., Splunk, QRadar, ArcSight).
* Strong understanding of threat detection, event correlation, and log analysis.
* Proficiency in scripting or automation (e.g., Python, PowerShell).
* NV1 or higher security clearance is essential.
* Proven experience in SIEM architecture and design.
* Deep knowledge of cyber threat detection frameworks and data modeling.
* Background in leading secure integration projects and SIEM uplift initiatives.
* NV1 or above clearance is required.