Cloud SIEM Engineer

1 week ago


Washington, United States Apex Systems Full time

Apex Systems, a World-Class Technology Solutions Provider, is seeking applicants for the below position on behalf of our client. Please apply if interested and qualified. Please note that only qualified candidates will be contacted.


Position: Cloud SIEM Engineer

Locations: Washington DC, Denver CO, Chicago IL - 3 days onsite/2 days remote

Duration: 12+ months contract

Pay Rate Range: $75+/hr W2


**ALL APPLICANTS MUST BE ABLE TO WORK DIRECTLY ON APEX'S W2 WITHOUT SPONSORSHIP NEEDED NOW OR IN THE FUTURE**


Required:

  • 3+ years of proven experience in SIEM and security operations (e.g., Splunk ES, Anvilogic, Palo Alto Cortex, Crowdstrike, MS Sentinel, Google Chronicle).
  • 3+ years of experience with Splunk, certifications preferred
  • 3+ Year experience with the detection and response-based security controls in at least one Public Cloud environment (e.g., AWS, GCP, Azure).
  • 2+ years of experience with WIZ
  • Understanding of Threat Modeling and Detection Engineering best practices.
  • Proficient programming skills in languages such as Python, Java, or C++, with a solid understanding of data structures and algorithms.



Key Responsibilities:

  • Leadership and Development: As an Individual Contributor with significant Cloud (AWS or Azure) and Security Information and Event Management (SIEM) domain experience collaborate and influence a team of talented developers in a collaborative and high-performing work environment. Set and achieve clear objectives, provide clarity and regular feedback, and enhance the team's capabilities.
  • ​AWS Detection Engineering: Understand and help drive Detection Engineering efforts in SIEM or SOAR as appropriate within AWS environments, using technologies such as AWS GuardDuty, AWS CloudWatch, AWS CloudTrail, AWS CloudFront, KMS, AWS SecurityHub, CSPM, DSPM, SSPM, and CIEM technologies to help defend the client's platform and workloads.
  • SIEM and SOAR Software Solution Architecture and Design: Collaborate with internal stakeholders, including cybersecurity experts, IT operations, and business units, to understand security requirements and business goals. Architect and design scalable and resilient SIEM and SOAR solutions that can effectively handle diverse data sources and complex security analytics use cases. Conduct regular reviews and refinement of the architecture to accommodate changes in the threat landscape and business needs.
  • Development and Implementation: Provide your expertise to augment the SIEM and SOAR development teams in coding, testing, and deploying custom applications to enhance the capabilities to detect advanced threats. Implement integrations with various data sources, security tools, and external threat intelligence feeds to enhance threat detection and response capabilities. Ensure compliance with coding standards, security best practices, scalability, resiliency concepts, and data privacy regulations throughout the development lifecycle.
  • Security Incident Management: Develop and refine strategies for proactive threat detection, incident identification, and efficient response and remediation. Conduct thorough analysis of security incidents, ensuring root cause analysis, and implement corrective actions to prevent future occurrences. Collaborate with the Incident Response team to enhance incident handling and escalation procedures.
  • Performance Optimization and Scalability: Continuously monitor the performance of the SIEM and SOAR systems and identify areas for optimization and enhancement. Evaluate and implement appropriate infrastructure upgrades to support increasing data volumes and maintain optimal system performance. Conduct load testing and performance tuning exercises to ensure the SIEM and SOAR platforms can handle ever expanding peak operational loads.
  • Compliance and Policy: Ensure adherence to industry standards, regulatory requirements, and internal security policies in all aspects of SIEM development and operation. Collaborate with the Compliance team to fulfill audit requests and participate in security assessments and penetration testing exercises.
  • Research and Innovation: Stay informed about the latest cybersecurity threats, trends, and emerging technologies relevant to SIEM and SOAR development and security operations. Evaluate new SIEM and SOAR tools, Detection Engineering technologies, and techniques to improve the organization's security posture and stay ahead of potential threats. Stay informed about Cloud detection and response security controls.


  • Cloud SIEM Engineer

    4 weeks ago


    Washington, United States Apex Systems Full time

    Apex Systems, a World-Class Technology Solutions Provider, is seeking applicants for the below position on behalf of our client. Please apply if interested and qualified. Please note that only qualified candidates will be contacted.Position: Cloud SIEM EngineerLocations: Washington DC, Denver CO, Chicago IL - 3 days onsite/2 days remoteDuration: 12+ months...


  • Washington, United States Apex Systems Full time

    Apex Systems, a World-Class Technology Solutions Provider, is seeking applicants for the below position on behalf of our client. Please apply if interested and qualified. Please note that only qualified candidates will be contacted.Position: Cloud SIEM EngineerLocations: Washington DC, Denver CO, Chicago IL - 3 days onsite/2 days remoteDuration: 12+ months...


  • Washington, Washington, D.C., United States Apex Systems Full time

    Cybersecurity Engineer - Cloud SIEMAlex Systems is seeking a highly skilled Cybersecurity Engineer to join our team. As a key member of our cybersecurity team, you will be responsible for designing and implementing secure cloud-based systems and architectures that meet security and compliance requirements.Key Responsibilities:Collaborate with internal...


  • Washington, United States ECS Limited Full time

    ECS is seeking a Mid Level Security Information and Event Management (SIEM) Engineer to work in our Washington DC office. ECS is a rapidly growing information security and information technology company in Washington, DC. We are looking for an experienced and motivated Mid-Level SIEM Engineer with a focus on Azure Sentinel, Cloud Security, and Event...


  • Washington, United States Apex Systems Full time

    Cloud Security Engineer- Posture Management Locations: Chicago, IL / Denver, CO / Washington, DC - 3X A WEEK ON-SITE $70-$80/hour on W2 W2 ONLY Unable to work C2C Join our team as a Cloud SIEM Engineer and play a crucial role in enhancing our security posture. We seek a dedicated professional passionate about security and innovation to help protect our...


  • Washington, Washington, D.C., United States Apex Systems Full time

    An exciting opportunity has arisen for a skilled Splunk and Cloud Security Specialist to join the team at Alex Systems. In this role, you will collaborate with internal stakeholders to understand security requirements and business goals, architecting and designing scalable and resilient SIEM and SOAR solutions. With 3+ years of experience in SIEM and...

  • DHS HSEN

    1 week ago


    Washington, United States Versar, Inc. Full time

    Job DescriptionJob DescriptionPosition SummaryBayFirst Solutions, a subsidiary of Versar, Inc., is seeking a Security Architect (SIEM & SOAR) to support the DHS’ Homeland Security Enterprise Network (HSEN) within the Office of the Chief Information Officer (OCIO), IT Operations, Enterprise Engineering Division (EED). This resource will be a member of a...


  • Washington, United States Capgemini Government Solutions Full time

    Capgemini Government Solutions (CGS) LLC seeks a highly motivated SIEM engineer with experience managing both ArcSight and Splunk. The ArcSight/Splunk Engineer will be responsible for configuring the collection, parsing, correlation, and visualization of events for a critical operational system. Ability to demonstrate strong skills in system administration,...


  • Washington, Washington, D.C., United States Apex Systems Full time

    About the RoleApex Systems, a leading technology solutions provider, is seeking an experienced Cloud SIEM Engineer to join our team. As a key member of our cybersecurity operations team, you will be responsible for designing and implementing scalable and resilient SIEM and SOAR solutions to detect advanced threats.This role requires a strong background in...


  • Washington, United States Inclusion Cloud Full time

    Inclusion Cloud is seeking an experienced DevOps and Cloud Engineer to join our team. The successful candidate will be responsible for assisting in the maintenance, patching, and upgrading of automation platforms and services.Key ResponsibilitiesThe DevOps and Cloud Engineer will assist in planning and implementing next-generation platforms for clients,...


  • Washington, United States Serigor Inc. Full time

    Job DescriptionJob DescriptionJob Title: Security Cloud Engineer (Remote)Location: Washington, DCDuration: 12 Months+Job Description:The client is seeking a qualified and experienced Security Cloud Engineer to enhance and manage the organization's cybersecurity posture. The selected candidate will play a crucial role in safeguarding sensitive data,\...


  • Washington, United States Capgemini Full time

    Washington DC, District of Columbia, United StatesCapgeminiA global leader in consulting, technology services and digital transformation, we offer an array of integrated services combining technology with deep sector expertise.Capgemini Government Solutions (CGS) LLC seeks a highly motivated SIEM engineer with experience managing both ArcSight and Splunk....


  • Washington, United States Capgemini Full time

    We are seeking a Senior Cybersecurity Engineer with expertise in designing and implementing robust SIEM architectures to join our team at Capgemini.Job OverviewCandidates will have the opportunity to work on exciting projects, collaborate with talented professionals, and contribute to delivering innovative solutions that meet the ever-evolving needs of our...


  • Washington, United States The Dignify Solutions LLC Full time

    **About The Dignify Solutions LLC**We are a dynamic company looking for skilled professionals to join our team. We offer competitive salaries and excellent benefits.**Job Title: Cloud Security Specialist**Estimated Salary: $120,000 - $180,000 per yearThe ideal candidate will have significant cloud experience in at least one major platform (AWS, Azure, GCP)....

  • Cloud Security

    3 days ago


    Washington, United States The Dignify Solutions LLC Full time

    Ansible Significant cloud experience in at least one major (AWS, Azure, GCP) Security Engineering and tooling experience (e.g.: previous ISSE etc. experience) Terraform (laC) some automation / CI/CD (eg: Github Actions, Gitlab, CircleCI, Jenkins, etc.) if they have windows experience, then they should be able to script in powershell or python. if they have...


  • Washington, United States Serigor Inc Full time

    Job ResponsibilitiesWe are looking for a skilled Cybersecurity Cloud Engineer to support us under the Technical Program manager to identify security vulnerabilities, design, and implement security solutions, monitor security systems, and respond to security incidents impacting client on-premises and cloud hosted resources. The selected candidate will be...


  • Washington, United States Serigor Inc Full time

    Job Summary:Serigor Inc is looking for a talented Information Security Engineer Manager to join our team. The successful candidate will have exceptional technical expertise, excellent leadership skills, and a proven track record of delivering complex security projects.About the Role:The Information Security Engineer Manager will be responsible for overseeing...


  • Washington, United States The Dignify Solutions LLC Full time

    **The Ideal Candidate**We are looking for a highly skilled Cloud Security Specialist with a strong background in cloud security, security engineering, and tooling. The ideal candidate will have expertise in Terraform, automation/CI/CD tools, and managed Kubernetes, as well as Splunk or equivalent SIEM experience.They should be proficient in scripting, with...


  • Washington, United States Capgemini Government Solutions Full time

    Capgemini Government Solutions (CGS) LLC seeks a highly motivated SIEM engineer with experience managing both ArcSight and Splunk. The ArcSight/Splunk Engineer will be responsible for configuring the collection, parsing, correlation, and visualization of events for a critical operational system. Ability to demonstrate strong skills in system administration,...


  • washington, United States Capgemini Government Solutions Full time

    Capgemini Government Solutions (CGS) LLC seeks a highly motivated SIEM engineer with experience managing both ArcSight and Splunk. The ArcSight/Splunk Engineer will be responsible for configuring the collection, parsing, correlation, and visualization of events for a critical operational system. Ability to demonstrate strong skills in system administration,...