GuidePoint SecurityRemote
Senior SIEM Developer – Northeast region
New York, United States of America
Full Time
2 hours ago
Visa Sponsor
Key skills
AWSAzureCloudCyber SecurityGoogle Cloud PlatformKafkaLogstashPythonSplunkBashPowerShellAnalyticsGCPGoogle Cloud
About this role
Role Overview
- Architect, implement, and maintain SIEM solutions with a focus on modern platforms including:
- Splunk
- Microsoft Sentinel
- Elastic
- Google SecOps / Chronicle
- CrowdStrike NG-SIEM / LogScale
- Palo Alto XSIAM
- SentinelOne SIEM
- Design and manage log ingestion pipelines using tools such as Cribl Stream, Edge, or Search (or similar).
- Optimize data routing, enrichment, and filtering to improve SIEM efficiency and cost control.
- Collaborate with cybersecurity, DevOps, and cloud infrastructure teams to integrate log sources and telemetry data.
- Develop custom parsers, dashboards, correlation rules, and alerting logic for security analytics and threat detection.
- Maintain and enhance system reliability, scalability, and performance of logging infrastructure.
- Provide expertise and guidance on log normalization, storage strategy, and data retention policies.
- Lead incident response investigations and assist with root cause analysis leveraging SIEM insights.
- Mentor junior engineers and contribute to strategic security monitoring initiatives.
Requirements
- 5+ years of experience in security engineering, with a primary focus on SIEM platforms.
- Hands-on experience with at least one of the following SIEM platforms:
- Splunk
- Microsoft Sentinel
- Elastic
- Google SecOps / Chronicle
- CrowdStrike NG-SIEM / LogScale
- Palo Alto XSIAM
- SentinelOne SIEM
- 2+ years of experience with Cribl or similar observability pipeline tools (e.g., Logstash, Fluentd, Kafka).
- Strong knowledge of log formats, data normalization, and event correlation.
- Familiarity with detection engineering, threat modeling, and MITRE ATT&CK framework.
- Proficiency with scripting (e.g., Python, PowerShell, Bash) and regular expressions.
- Deep understanding of logging from cloud (AWS, Azure, GCP) and on-prem environments.
- Bachelor’s degree in a relevant discipline or equivalent professional experience
Tech Stack
- AWS
- Azure
- Cloud
- Cyber Security
- Google Cloud Platform
- Kafka
- Logstash
- Python
- Splunk
Benefits
- Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options)
- Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
- 12 corporate holidays and a Flexible Time Off (FTO) program
- Healthy mobile phone and home internet allowance
- Eligibility for retirement plan after 2 months at open enrollment
- Pet Benefit Option