Piper Companies is seeking a Remote SIEM Engineer (Cortex XSIAM) to join a premier cyber security organization. The SIEM Engineer will work with clients to determine a suitable detection strategy, helping to protect customers from threats, by designing and implementing correlation rules.

QUALIFICATIONS FOR THE SIEM ENGINEER INCLUDE:

• 6+ years of deploying and integrating (SIEM) to enterprise to large enterprise-level
• Coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring activities using (SIEM) platforms
• The ability to create and develop correlation and detection rules, within a (SIEM) to support alerting capabilities
• Experience working with and deploying a variety of SIEM technologies (i.e. Splunk, IBM QRadar)
• Strong Regular Expression skills

• Work with technical lead to develop log ingestion strategy
• Contribute to detection strategy based on industry best practices
• Detail step-by-step process to ingest high-quality log sources
• Perform log source monitoring and optimization
• Create high-quality correlation rules
• Tune log sources and correlation rules
• Be an Subject Matter Expert (SME) for SIEM, Correlation, and Log Source Ingestion