Senior Engineer - Cyber Security Operations (SIEM Engineer) at Sysco

Sri Lanka

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Foodservice, CybersecurityIndustries

Requirements

A Bachelor's Degree in Cybersecurity, Computer Science, Networking, or related field
3+ years of experience in SIEM engineering or security operations, with 2+ years hands-on in Microsoft Sentinel
Proficiency in KQL (Kusto Query Language), understanding of Azure Security Center, Defender for Cloud, and Log Analytics
Familiarity with incident response, threat detection, and log management processes
Working knowledge of MITRE ATT&CK, NIST, or equivalent security frameworks
Strong analytical, problem-solving, and communication skills
Microsoft certifications such as SC-200, AZ-500
Experience with Azure Logic Apps, Microsoft Defender XDR, and M365 security tools
Scripting knowledge (PowerShell, Python) for automation
Experience with SOAR platforms and playbook development

Responsibilities

Designing, deploying, and maintaining Microsoft Sentinel SIEM infrastructure
Developing and optimizing data connectors for log ingestion from cloud, on-prem, and hybrid sources
Managing and tuning analytic rules, workbooks, playbooks, and automation workflows
Creating and refining KQL queries for custom detection use cases
Collaborating with Threat Intelligence and SOC teams to operationalize threat indicators and behavioral analytics
Supporting incident investigation with log enrichment and correlation
Ensuring high availability and performance of Sentinel components
Monitoring ingestion costs and optimizing data retention policies
Implementing health checks and alerting for SIEM infrastructure
Generating reports for regulatory and audit requirements
Maintaining documentation for SIEM architecture, data flows, and detection logic
Working closely with cloud, infrastructure, and application teams to onboard new log sources
Staying up to date with Microsoft Sentinel roadmap and security best practices
Participating in purple team exercises and detection gap analysis

Skills

Key technologies and capabilities for this role

Microsoft SentinelSIEMKQLData ConnectorsAnalytic RulesWorkbooksPlaybooksAutomation WorkflowsLog IngestionThreat DetectionIncident Response

Questions & Answers

Common questions about this position

What experience is required for the Senior SIEM Engineer role?

Candidates need a Bachelor's Degree in Cybersecurity, Computer Science, Networking, or related field, plus 3+ years in SIEM engineering or security operations with 2+ years hands-on in Microsoft Sentinel.

What key technical skills are needed for this position?

Proficiency in KQL (Kusto Query Language), understanding of Azure Security Center, Defender for Cloud, and Log Analytics, along with familiarity in incident response, threat detection, log management, and frameworks like MITRE ATT&CK or NIST.

Is this a remote position or does it require office work?

This information is not specified in the job description.

What is the salary or compensation for this role?

This information is not specified in the job description.

What teams will I work with in this role?

This highly collaborative role involves working closely with SOC, Threat Intelligence, Cloud, and Infrastructure teams, as well as cloud, infrastructure, and application teams to maintain robust security monitoring.

Sysco

Foodservice distribution for restaurants and healthcare

About Sysco

Sysco Corporation specializes in foodservice distribution, primarily serving restaurants, healthcare facilities, and educational institutions. The company offers a variety of products and services, including food items, kitchen equipment, and marketing support, tailored to meet the specific needs of its clients. Sysco differentiates itself from competitors by providing comprehensive solutions, such as the "Restaurants Rising Toolkit" during the COVID-19 pandemic, which helps restaurants adapt to new dining trends. The goal of Sysco is to make running a restaurant easier and more profitable for its clients.

Houston, TexasHeadquarters

1970Year Founded

IPOCompany Stage

Food & AgricultureIndustries

Benefits

Health Insurance

401(k) Retirement Plan

401(k) Company Match

Professional Development Budget

Performance Bonus

Risks

Increased competition from tech-driven solutions could impact Sysco's market share.

Reliance on partnerships for technology advancements may pose risks if results are unmet.

Socially responsible investing trends may pressure Sysco to improve ESG standards.

Differentiation

Sysco offers comprehensive B2B solutions, including food products, equipment, and marketing services.

The company provides flexible payment options and waives delivery minimums for scheduled deliveries.

Sysco's 'Restaurants Rising Toolkit' supports restaurants adapting to new dining trends.

Upsides

Sysco can capitalize on the demand for plant-based and alternative protein products.

The rise of ghost kitchens offers Sysco opportunities for specialized supply chain solutions.

Digital transformation in foodservice allows Sysco to enhance service offerings and engagement.

Land your dream remote job 3x faster with AI

Try Jobo Free