AI Summary
Advance Norton Healthcare's security monitoring and detection capabilities by leading technical design, implementation, and optimization of SIEM ingestion pipelines, analytics, and platform performance. Ensure high-quality telemetry and drive improvements to detection coverage. Mentor junior staff and contribute to the strategic direction of the SIEM platform.
Key Highlights
Lead technical design and implementation of SIEM ingestion pipelines
Ensure high-quality telemetry and drive improvements to detection coverage
Mentor junior staff and contribute to strategic direction of SIEM platform
Key Responsibilities
Lead technical design, implementation, and optimization of SIEM ingestion pipelines, analytics, and platform performance
Ensure high-quality telemetry and drive improvements to detection coverage
Mentor junior staff and contribute to strategic direction of SIEM platform
Technical Skills Required
Benefits & Perks
Fully remote work opportunity
Must reside in one of the following states: Kentucky, Indiana, Missouri, Ohio, Tennessee, Alabama, Virginia, Mississippi, North Carolina, South Carolina
Job Description
Responsibilities
The Senior SIEM Engineer plays a key role in advancing Norton Healthcare’s security monitoring and detection capabilities. This role leads the technical design, implementation and optimization of SIEM ingestion pipelines, analytics, enrichment and platform performance. The engineer ensures that log sources provide high-quality telemetry, supports complex troubleshooting, and drives improvements to detection coverage in alignment with enterprise security objectives. The engineer works alongside architects, SOC analysts, incident responders and platform owners; the Senior SIEM Engineer shapes ingestion standards, maintains analytic rule quality, and guides the evolution of the SIEM toward greater maturity, automation, and threat-informed capability. This position also mentors junior staff and contributes to the strategic direction of the SIEM platform.
- This position offers a fully remote work opportunity. Employees in this role must reside in one of the following states to be considered for fully remote positions: Kentucky, Indiana, Missouri, Ohio, Tennessee, Alabama, Virginia, Mississippi, North Carolina, South Carolina**
Interested in remote work opportunities in Cyber Security? Discover Cyber Security Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.
Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.
- Minimum five years of experience in security engineering or SOC operations, with at least three years focused on SIEM platforms, detection engineering or security log architecture in enterprise environments. Demonstrated experience with SIEM design, ingestion architecture, detection tuning, KQL or equivalent query languages, and cross-platform logging technologies, preferably in a hybrid on-prem/cloud environment. Proven ability to troubleshoot complex ingestion failures, normalization issues, schema inconsistencies and data quality problems across distributed systems. Experience supporting investigations, tuning detection logic and working directly with SOC, IR, and engineering teams on high-impact security events.
- Bachelor degree in cybersecurity, information systems or equivalent experience.
- Seven years of the above
Similar Jobs
Explore other opportunities that match your interests
Visa Sponsorship
Relocation
Remote
Job Type
Full-time
Experience Level
Mid-Senior level
cyber focus ai
United State
Visa Sponsorship
Relocation
Remote
Job Type
Full-time
Experience Level
Mid-Senior level
cyber focus ai
United State
Visa Sponsorship
Relocation
Remote
Job Type
Full-time
Experience Level
Mid-Senior level
SWITCH
United State