SIEM Engineer

@ Piper Companies

About the SIEM Engineer Role

Piper Companies is seeking a SIEM Engineer to join a cutting-edge cybersecurity team supporting Cortex XSIAM deployments. This fully remote, client-facing technical position focuses on log ingestion, detection strategy, and SIEM optimization for enterprise customers.

Key Responsibilities

• Collaborate with the technical lead to develop log ingestion strategies.
• Define and implement detection strategies aligned with customer and industry best practices.
• Guide the onboarding of high-quality log sources into Cortex XSIAM.
• Monitor, tune, and optimize log source ingestion and correlation rules.
• Design and implement effective correlation rules for enhanced threat detection.
• Act as an SME in SIEM, log ingestion, and correlation.
• Identify automation opportunities for alert handling and analyst workflows.
• Create and maintain technical documentation regarding SIEM configurations.
• Support product adoption through collaboration with internal and external teams.
• Participate in customer meetings and workshops (up to 10% travel).

Qualifications

• 6+ years of experience deploying and integrating SIEM platforms in enterprise environments.
• Strong background in log management, event correlation, and compliance automation.
• Hands-on experience with SIEM tools such as Splunk, IBM QRadar, or similar.
• Proven ability to develop and tune detection and correlation rules.
• Proficiency in Regular Expressions and log parsing.
• Understanding of third-party log documentation and formats.
• Familiarity with SIEM performance metrics and reporting.
• Experience with Security Operations Center tools and processes (4+ years).
• Bachelor’s degree or equivalent certifications (e.g., CISSP, GIAC).
• Strong written and verbal communication skills in English.

Key Skills/Competency

• SIEM
• Cortex XSIAM
• Log Ingestion
• Detection Strategy
• Correlation Rules
• Cybersecurity
• SOC
• Automation
• Technical Documentation
• Regex