Principal SIEM Security Engineer

Remote

Apply with AI Apply

Not SpecifiedCompensation

Expert & Leadership (9+ years)Experience Level

Full TimeJob Type

UnknownVisa

Cybersecurity, Information Technology, Security OperationsIndustries

Requirements

Candidates must possess a Bachelor's degree in Cybersecurity, Information Security, or a related field, with a minimum of 9 years of security engineering experience, including over 5 years focused on advanced Splunk and SentinelOne implementations. A Splunk Certified Architect or Splunk Certified Enterprise Security Admin certification is required, along with SentinelOne certifications or SentinelOne University experience. Proficiency in SPL query language, advanced search techniques, creating custom Splunk dashboards and reports, Splunk administration, performance tuning, and demonstrated expertise in security monitoring and SIEM technology are essential. Authorization to work in the US is mandatory.

Responsibilities

The Principal SIEM Security Engineer will evaluate existing Splunk instances and content for a major enterprise retail customer, and migrate data sources and content from Splunk to SentinelOne AI SIEM. This role involves leading an offshore team in performing migration tasks, integrating SentinelOne with other security tools to create a comprehensive security monitoring ecosystem, and designing and maintaining S1 data models for security use cases and compliance reporting. Additionally, the engineer will develop custom threat detection rules and correlation searches in Splunk, configure and tune SIEM alerts to minimize false positives and improve detection efficacy, and provide technical expertise during security incidents, coordinating response activities. Participation in an on-call rotation for security incident response is also required.

Skills

SIEM

Splunk

SentinelOne

Security Operations

Threat Detection

Data Migration

Security Monitoring

Compliance Reporting

Risk Management

Cybersecurity

UltraViolet Cyber

Unified defensive and offensive cybersecurity solutions

About UltraViolet Cyber

UltraViolet Cyber focuses on enhancing cybersecurity for organizations by integrating both defensive and offensive security operations. Their main services include Managed Detection and Response (MDR), which provides continuous monitoring and response to cyber threats, and Penetration Testing as a Service, where they simulate cyber attacks to find and fix vulnerabilities. This company stands out from competitors by combining the expertise of Red Team (offensive) and Blue Team (defensive) professionals, ensuring that security measures are both proactive and reactive. The goal of UltraViolet Cyber is to help organizations improve their resilience against cyber threats and protect their sensitive data and infrastructure effectively.

McLean, VirginiaHeadquarters

2023Year Founded

$4MTotal Funding

SERIES_ACompany Stage

CybersecurityIndustries

201-500Employees

Benefits

Health Insurance

Dental Insurance

Vision Insurance

Life Insurance

Disability Insurance

401(k) Company Match

401(k) Retirement Plan

Unlimited Paid Time Off

Paid Holidays

Risks

Increased competition from larger firms may pressure UltraViolet Cyber's market share.

Rapid evolution of AI-driven threats may outpace current capabilities, requiring investment.

Integration challenges from the merger could lead to operational inefficiencies and dissatisfaction.

Differentiation

UltraViolet Cyber unifies defensive and offensive security operations for comprehensive threat management.

The company offers Managed Detection and Response and Penetration Testing as a Service.

Security as Code platform automates threat detection, providing a unified risk picture.

Upsides

Growing demand for cloud security solutions offers expansion opportunities for UltraViolet Cyber.

Interest in AI-driven cybersecurity tools aligns with UltraViolet Cyber's automation focus.

Rising need for advanced penetration testing services due to RaaS models benefits UltraViolet Cyber.

Land your dream remote job 3x faster with AI

Try Jobo Free