🛠 Tech Stack

💼 About This Role

You'll lead the design, implementation, and optimization of SIEM systems and observability pipelines for a cybersecurity team. You'll architect and maintain modern SIEM platforms to enhance threat detection and response. This role is fully remote with preference for East Coast candidates.

🎯 What You'll Do

• Architect, implement, and maintain SIEM solutions like Splunk, Sentinel, Elastic.
• Design and manage log ingestion pipelines using Cribl or similar tools.
• Develop custom parsers, dashboards, and correlation rules for security analytics.
• Mentor junior engineers and contribute to strategic security initiatives.

📋 Requirements

• 5+ years of experience in security engineering with SIEM focus.
• Hands-on experience with at least one modern SIEM platform (Splunk, Sentinel, etc.).
• 2+ years of experience with Cribl or similar observability pipeline tools.
• Proficiency with scripting (Python, PowerShell, Bash) and regular expressions.

✨ Nice to Have

• Familiarity with detection engineering and MITRE ATT&CK framework.
• Knowledge of cloud logging from AWS, Azure, or GCP.
• Experience with log normalization and data retention strategies.

🎁 Benefits & Perks

• 🏥 Zero Deductible PPO medical plan with 90% premium coverage.
• 🏖️ Flexible Time Off (FTO) plus 12 corporate holidays.
• 💰 High Deductible Health Plan with HSA and employer contribution.
• 📱 Mobile phone and home internet allowance.
• 🦷 Dental insurance fully paid for employees.

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1HR Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager Interview· 45 min