Security Engineer (SIEM) Position Available In Charleston, South Carolina
Tallo's Job Summary: The Security Engineer (SIEM) in North Charleston, SC requires a Secret Clearance, with the ability to obtain a Top Secret. Responsibilities include managing SIEM and SOAR systems, designing infrastructure, monitoring security events, and integrating security tools. Skills needed include experience with Elastic clusters, SIEM and SOAR solutions, Elasticsearch Enterprise, and scripting languages for automation.
Job Description
Security EngineerNorth Charleston, SCMinimum of a Secret Clearance Required with ability to obtain Top SecretAs a Security Engineer you will The
SIEM/SOAR
Engineer will be responsible for managing and maintaining the CSSP’s Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) systems.
Position Requirements and Duties:
Design, implement, and maintain the SIEM and SOAR infrastructure (Elastic and Splunk).Manage and maintain an enterprise Elastic cluster to support SIEM operations for the CSSP.Monitor and analyze security events and incidents to protect information assets.
Assist in the development and maintenance of use cases, rules, and alerts for threat detection and response.
Integrate SIEM and SOAR systems with other security tools and data sources.
Automate security operations workflows and incident response procedures using SOAR platforms.
Perform regular system monitoring and health checks to ensure the integrity and availability of SIEM and SOAR systems.
Conduct performance tuning, capacity planning, and scalability assessments for SIEM and SOAR solutions.
Implement and manage data ingestion pipelines for security event data.
Perform regular updates, patches, and upgrades for SIEM and SOAR systems.
Create and maintain documentation for system configurations, processes, and standard operating procedures.
Collaborate with security analysts, operations analysts, incident responders, and other CSSP teams to ensure effective use of SIEM and SOAR capabilities.
Required Skills:
3 years of experience in maintaining an enterprise Elastic clusterProficiency in managing and maintaining SIEM and SOAR solutions.
Experience with Elasticsearch Enterprise (including Logstash and Kibana) for SIEM operations.
Strong understanding of security event and incident management processes.
Knowledge of scripting languages (e.g., Python, PowerShell) for automation and integration.[]{style=”color: #2b333a; background-color: #ffffff; font-size: 14px; font-family: OpenSans, Helvetica,”}
