RemoteLeaf Logo
Log in Sign up

Senior SIEM Developer/Engineer - Northeast region (Remote)

1 day, 4 hours ago
United States
Full-time
Senior
Security Engineer
DevOps and Infrastructure
AWS Azure Bash Elasticsearch Fluentd GCP Kafka Logstash PowerShell Python SIEM Splunk
Apply Now
GuidePoint Security

GuidePoint Security

GuidePoint Security is a trusted cybersecurity consulting firm that provides expertise, solutions, and services to help organizations make informed decisions and minimize risks. Their elite team of experts offers holistic perspectives on cybersecurity,...

Internet Software & Services
251-1K
Founded 2011
View All Jobs 40

Description

  • Architect, implement, and maintain SIEM solutions across modern security platforms.
  • Design and manage log ingestion pipelines using Cribl Stream, Edge, Search, or similar tools.
  • Optimize data routing, enrichment, and filtering to improve SIEM efficiency and cost control.
  • Collaborate with cybersecurity, DevOps, and cloud infrastructure teams to integrate log sources and telemetry data.
  • Develop custom parsers, dashboards, correlation rules, and alerting logic for threat detection and security analytics.
  • Maintain and improve the reliability, scalability, and performance of logging infrastructure.
  • Advise on log normalization, storage strategy, and data retention policies.
  • Lead incident response investigations and support root cause analysis using SIEM insights.
  • Mentor junior engineers and contribute to security monitoring initiatives.

Requirements

  • 5+ years of experience in security engineering with a primary focus on SIEM platforms.
  • Hands-on experience with at least one SIEM platform, such as Splunk, Microsoft Sentinel, Elastic, Google SecOps/Chronicle, CrowdStrike NG-SIEM/LogScale, Palo Alto XSIAM, or SentinelOne SIEM.
  • 2+ years of experience with Cribl or similar observability pipeline tools such as Logstash, Fluentd, or Kafka.
  • Strong knowledge of log formats, data normalization, and event correlation.
  • Familiarity with detection engineering, threat modeling, and the MITRE ATT&CK framework.
  • Proficiency with scripting languages such as Python, PowerShell, or Bash, plus regular expressions.
  • Deep understanding of logging from cloud environments (AWS, Azure, GCP) and on-premises systems.
  • Bachelor’s degree in a relevant discipline or equivalent professional experience.

Benefits

  • Remote workforce primarily within the U.S., with East Coast preference for collaboration and support hours.
  • GuidePoint pays 90% of the premium for the Zero Deductible PPO medical plan for employees and 70% for family plans.
  • GuidePoint pays 100% of employee premiums for the High Deductible Health Plan with HSA and 75% for family plans, plus quarterly HSA contributions.
  • 100% employer-paid dental insurance for employees and 75% coverage for family plans.
  • 12 corporate holidays and a Flexible Time Off (FTO) program.
  • Mobile phone and home internet allowance.
  • Eligibility for a retirement plan after 2 months at open enrollment.
  • Pet benefit option.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Stellar Cyber

Senior / Staff Software Engineer - Parser Team

Stellar Cyber 51-250 Professional Services

Stellar Cyber is hiring a Senior or Staff Software Engineer to own parser development for its AI-driven cybersecurity platform, turning diverse security logs into normalized data that powers detection and analytics.

Taiwan Japan Full-time Senior Security Engineer Software Engineer
Apache Spark AWS Azure C++ Cybersecurity Docker GCP Hadoop Java JSON Kafka Kubernetes LLM Python Ruby SIEM XML
5 hours, 54 minutes ago
MetroStar

Sr. Network Security Engineer III (Clearable) (6563)

MetroStar 251-1K IT Services

MetroStar is hiring a Sr. Network Security Engineer III to secure and harden mission-critical federal network environments while supporting secure mission delivery for a high-visibility customer.

United States Full-time Senior Security Engineer
$207k-$320k
Agile Cisco Fortinet IDS IPS
13 hours, 17 minutes ago
Trility Consulting

Mid-Level DevSecOps Consultant - AWS/CMMC

Trility Consulting 51-250 Internet Software & Services

Trility Consulting is hiring a Mid-Level DevSecOps Consultant to design and operate a CMMC-aligned GitLab platform for a regulated aerospace environment on Kubernetes.

United States Full-time Mid Level DevOps Engineer Security Engineer
Argo CD AWS CI/CD DevSecOps GitLab GitOps Kubernetes Terraform
18 hours, 25 minutes ago
Capital.com

Network Security Engineer

Capital.com 251-1K Capital Markets

Network Security Engineer at a global trading platform, focused on strengthening infrastructure security, monitoring network threats, and improving security operations through automation.

Bulgaria Poland Cyprus Full-time Mid Level Security Engineer
AWS Bash Docker GCP Kubernetes Linux Network Security Python SIEM Wireshark
18 hours, 44 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers