Senior Elastic SIEM Engineer
4 weeks ago
ECS is seeking a SIEM Engineer III to work in our Fairfax, VA office.
Job Description:
Are you passionate about the ever-evolving field of cybersecurity and ready to embark on a career with a positive and lasting impact? Join our dynamic team at ECS, a leading provider of solutions in science, engineering, and advanced technologies, including cloud, cybersecurity, artificial intelligence (AI), data, and enterprise transformation solutions. As a SIEM Engineer III, you'll play a crucial role in our mission to safeguard organizations against cyber threats. If you're seeking a challenging yet rewarding position where you can enhance your skills, collaborate with experts in the field, and contribute significantly to the protection of digital assets, this opportunity is perfect for you.
Our SIEM Engineers are at the forefront of our Managed Security Services Provider (MSSP) team, responsible for strengthening the digital defenses of our clients. Your primary focus will be on ensuring the reliability and security of our Security Information and Event Management (SIEM) systems, which are often the first line of defense against cyber adversaries. You'll delve deep into the intricacies of SIEM technology, assist in implementing cutting-edge solutions, and work closely with our experienced team to detect and mitigate emerging threats. If you're a tech-savvy individual with a strong desire to protect organizations from the evolving cyber threat landscape, this role offers a unique opportunity to hone your skills and make a significant impact in the world of cybersecurity.
Responsibilities
- Independently lead the installation, configuration, and deployment of SIEM solutions for clients, ensuring customization to their unique needs and compliance requirements. Act as the primary point of contact for complex deployments.
- Collaborate with senior engineers in the design and planning of deployment architectures. Lead the implementation of complex configurations tailored to specific security needs.
- Perform and oversee advanced routine maintenance on SIEM systems, including critical patches, updates, and strategic upgrades. Optimize system performance and reliability through expert adjustments and tuning.
- Lead the integration of the SIEM platform with a diverse array of tools and systems, ensuring seamless interoperability and enhanced security posture.
- Develop and implement sophisticated scripts to automate tasks and enhance interactions between the SIEM and other systems, improving efficiency and reducing manual effort.
- Conduct advanced system health checks, proactively monitor SIEM performance, and implement preemptive measures to maintain system integrity.
- Independently document and resolve complex issues, leveraging deep technical expertise and collaborative problem-solving skills.
- Take charge of SIEM configuration management, making strategic adjustments to optimize performance and data accuracy, and adapting to changes in the monitored environment.
- Maintain detailed documentation of SIEM system configurations, operations, and procedures. Ensure documentation is comprehensive, up-to-date, and adheres to compliance standards.
- Maintain detailed documentation of SIEM system configurations, operations, and procedures. Ensure documentation is comprehensive, up-to-date, and adheres to compliance standards.
- Act as the primary liaison with vendors for advanced support and resolution of complex product-related issues.
- Engage in and sometimes lead expert-level training on SIEM features and capabilities. Facilitate knowledge transfer sessions to elevate team expertise.
- Provide high-level support and strategic advice to security analysts, ensuring that the SIEM system's capabilities are fully leveraged to meet security operations' needs.
- Drive continuous improvement initiatives for SIEM-related processes, focusing on efficiency gains and advanced security enhancements.
- Participate in continuous improvement initiatives to streamline SIEM-related processes.
- Provide strategic feedback and suggestions for automating repetitive tasks and improving system configurations based on expert knowledge and experience.
At least three years of experience demonstrating proficiency in the following skills:
- Proven experience with SIEM technologies, concepts, and common platforms such as Elastic, Splunk, IBM QRadar, or LogRhythm.
- Proven experience in a leadership role, managing technical teams.
- Experience with system administration for various operating systems, particularly those commonly used in corporate environments like Windows, Linux, and MacOS.
- A strong grasp of fundamental cybersecurity principles, including threat landscapes, security protocols, and various types of cyberattacks.
- Solid experience with scripting languages such as Python, PowerShell, or Bash for automation of tasks and integration of different systems with the SIEM.
- Aptitude for troubleshooting and problem-solving, including being able to logically deduce where issues may lie and how to correct them.
- The ability to work effectively in a team environment, often collaborating with other engineers, IT staff, and security analysts.
- Good verbal and written communication skills for documenting processes, explaining technical concepts, and reporting to higher management or technical teams.
- Bachelor's degree; preferably in Computer Science, Information Security, or a related field. Will consider experience in lieu of a degree.
- Able and willing to support domestic or international on-site travel with customers or at ECS offices. Any travel will be short in duration and well-planned.
- Possess and maintain a U.S. Passport.
- Wear professional business attire for in-person meetings and teleconferences with internal and external organizations.
- Perform duties not explicitly listed in this position description, as assigned.
- Able and willing to obtain a US Security Clearance.
- At least three years of hands-on experience with specific SIEM platforms, indicating a deeper understanding of their features and capabilities. Experience with Elastic Stack and/or Splunk is highly valued.
- Experience deploying, configuring, maintaining, and troubleshooting Elasticsearch and Kibana on bare metal, Elastic Cloud Enterprise (ECE), Elastic Cloud on Kubernetes (ECK), and/or Elasticsearch Service.
- Strong understanding of Elasticsearch architecture, including indexing, searching, and data modeling.
- Familiarity with data security and compliance standards.
- Knowledge of DevOps practices and tools (e.g., CI/CD pipelines, Ansible, Terraform).
- Security community contributions (blog posts, white papers, conference talks, tool development, etc.)
- A stronger grasp of advanced network infrastructure, including cloud networks, virtual networks, and network segmentation, which can be crucial for more sophisticated SIEM deployments.
- Experience integrating SIEM platforms with SOAR and IRCM.
- Skills in project management and familiarity with methodologies like Agile can be beneficial, particularly in managed service environments.
- Familiarity with implementing machine learning pipelines and integrating AI-driven analytics into SIEM for improved incident detection and automated response.
ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, sex, age, sexual orientation, gender identity or expression, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, status as a crime victim, disability, protected veteran status, or any other characteristic protected by law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.
ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3800 employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.
-
SIEM Engineer III
4 weeks ago
Fairfax, United States ECS Full timeECS is seeking a SIEM Engineer III to work in our Fairfax, VA office. Job Description: Are you passionate about the ever-evolving field of cybersecurity and ready to embark on a career with a positive and lasting impact? Join our dynamic team at ECS, a leading provider of solutions in science, engineering, and advanced technologies, including cloud,...
-
SIEM Engineer III
1 month ago
Fairfax, United States ECS Full timeECS is seeking a SIEM Engineer III to work in our Fairfax, VA office.Job Description:Are you passionate about the ever-evolving field of cybersecurity and ready to embark on a career with a positive and lasting impact? Join our dynamic team at ECS, a leading provider of solutions in science, engineering, and advanced technologies, including cloud,...
-
Engineer - Elastic Engineer (Sr)
18 hours ago
Fairfax, United States Quadrant Inc Full timeJob ID: 24-02732 Senior Elastic Engineer Fairfax, VA MUST: Experienced Senior Elastic Engineer 5+ years of experience in sizing, designing and deploying ELK stacks in an ECE environment. Experience in deployment automation in the context of Elastics-based dashboards in ECE. Hands-on experience in troubleshooting/debugging availability and performance...
-
Engineer- Sr Elastic Engineer
2 days ago
Fairfax, United States Quadrant Inc Full timeJob ID: 24-02732 Sr. Elastic Engineer Fairfax, VA MUST: Experienced Elastic Engineer 5+ years of experience in sizing, designing and deploying ELK stacks in an ECE environment. Experience in deployment automation in the context of Elastics-based dashboards in ECE. Hands-on experience in troubleshooting/debugging availability and performance...
-
Engineer- Sr Elastic Engineer
4 days ago
Fairfax, United States Quadrant Full timeJob ID: 24-02732 Sr. Elastic Engineer Fairfax, VA MUST: Experienced Elastic Engineer 5+ years of experience in sizing, designing and deploying ELK stacks in an ECE environment. Experience in deployment automation in the context of Elastics-based dashboards in ECE. Hands-on experience in troubleshooting/debugging availability and performance issues in...
-
Observability Engineer
4 weeks ago
Fairfax, United States Dunhill Professional Search Full timeObservability Engineer *Full-Time Telework *U.S. Citizenship Required This role has the responsibility of adhering to the security and privacy requirements within Company security trainings and within relevant Company Information and Security Policy and Procedures such as Company Policy on Privacy and Personal Information and Company System Security...
-
Observability Engineer
2 months ago
Fairfax, United States Dunhill Professional Search & Government Solutions Full timeObservability Engineer*Full-Time Telework*U.S. Citizenship RequiredThis role has the responsibility of adhering to the security and privacy requirements within Company security trainings and within relevant Company Information and Security Policy and Procedures such as Company Policy on Privacy and Personal Information and Company System Security...
-
Sr. Observability Engineer
3 weeks ago
Fairfax, United States ECS Full timeJob Description: Are you passionate about the ever-evolving field of cybersecurity and ready to embark on a career with a positive and lasting impact? Join our dynamic team at ECS, a leading provider of solutions in science, engineering, and advanced technologies, including cloud, cybersecurity, artificial intelligence (AI), data, and enterprise...
-
Sr. Observability Engineer
2 months ago
Fairfax Station, United States ECS Limited Full timeECS is seeking a Sr. Observability Engineer to work in our Fairfax, VA office.Please Note: This position is contingent upon contract award. Job Description: Are you passionate about the ever-evolving field of cybersecurity and ready to embark on a career with a positive and lasting impact? Join our dynamic team at ECS, a leading provider of solutions in...
-
Senior Security Data Scientist
1 month ago
Fairfax, United States Elasticsearch B.V. Full timeElastic is a free and open search company that powers enterprise search, observability, and security solutions built on one technology stack that can be deployed anywhere. From finding documents to monitoring infrastructure to hunting for threats, Elastic makes data usable in real-time and at scale. Thousands of organizations worldwide, including Barclays,...
-
Fairfax, United States Elasticsearch B.V. Full timeElastic is a free and open search company that powers enterprise search, observability, and security solutions built on one technology stack that can be deployed anywhere. From finding documents to monitoring infrastructure to hunting for threats, Elastic makes data usable in real-time and at scale. Thousands of organizations worldwide, including Barclays,...
-
Senior Enterprise Account Executive FSI
2 months ago
Fairfax, United States Elasticsearch B.V. Full timeElastic is a free and open search company that powers enterprise search, observability, and security solutions built on one technology stack that can be deployed anywhere. From finding documents to monitoring infrastructure to hunting for threats, Elastic makes data usable in real-time and at scale. Thousands of organizations worldwide, including Barclays,...
-
Data Analyst/Data Engineer
3 weeks ago
Fairfax, United States Hiring Now! Full timeJob Description ENSCO Mission Systems Group (MSG) is recruiting senior engineering and support staff supporting the Office of the Undersecretary of Defense - Intelligence & Security Branch (OUSD/I&S). We are currently seeking a Data Analyst/Data Engineer who will interface with functional and technical experts. Successful candidates will support the...
-
Senior Mechanical Engineer
1 month ago
Fairfax, United States Whitman Requardt and Associates Full timeAt Whitman, Requardt & Associates, LLP, we are "People Focused and Project Driven". We have been in business for more than 105 years and we are known for our quality work and quality employees. This is your chance to join our team - help us to design the infrastructure and buildings that improve the world Whitman, Requardt & Associates, LLP (WRA) is a...
-
Data Analyst/Data Engineer
1 month ago
Fairfax, United States ENSCO Full timeCity Fairfax State Virginia Country United States Job Description ENSCO Mission Systems Group (MSG) is recruiting senior engineering and support staff to support the Office of the Undersecretary of Defense - Intelligence & Security Branch (OUSD/I&S). We are currently seeking a Data Analyst/Data Engineer who will interface with functional and technical...
-
Senior Mechanical Engineer
2 months ago
Fairfax, United States Whitman, Requardt & Associates, LLP Full timeJob DescriptionJob DescriptionAt Whitman, Requardt & Associates, LLP, we are "People Focused and Project Driven". We have been in business for more than 105 years and we are known for our quality work and quality employees. This is your chance to join our team - help us to design the infrastructure and buildings that improve the world!Whitman, Requardt &...
-
Senior Mechanical Engineer
2 months ago
Fairfax, United States Whitman Requardt and Associates Full timeAt Whitman, Requardt & Associates, LLP, we are "People Focused and Project Driven". We have been in business for more than 105 years and we are known for our quality work and quality employees. This is your chance to join our team - help us to design the infrastructure and buildings that improve the world! Whitman, Requardt & Associates, LLP (WRA) is a...
-
Data Analyst/Data Engineer
1 month ago
Fairfax, United States Ensco, Inc Full timeJob DescriptionENSCO Mission Systems Group (MSG) is recruiting senior engineering and support staff supporting the Office of the Undersecretary of Defense - Intelligence & Security Branch (OUSD/I&S). We are currently seeking a Data Analyst/Data Engineer who will interface with functional and technical experts. Successful candidates will support the...
-
Senior Mechanical Engineer
2 months ago
Fairfax, United States Whitman Requardt and Associates Full timeAt Whitman, Requardt & Associates, LLP, we are "People Focused and Project Driven". We have been in business for more than 105 years and we are known for our quality work and quality employees. This is your chance to join our team - help us to design the infrastructure and buildings that improve the world! Whitman, Requardt & Associates, LLP (WRA) is a...
-
Senior Roadway Project Engineer
1 month ago
Fairfax, United States Whitman Requardt and Associates Full timeAt Whitman, Requardt & Associates, LLP, we are "People Focused and Project Driven". We have been in business for more than 105 years and are known for our quality work and quality employees. This is your chance to join our team - help us to design the transportation and infrastructure that improves the world! WRA is currently seeking a senior level Roadway...
