Senior Cybersecurity SIEM Engineer (Remote)

Lensa is a career site that helps job seekers find great jobs in the US. We are not a staffing firm or agency. Lensa does not hire directly for these jobs, but promotes jobs on LinkedIn on behalf of its direct clients, recruitment ad agencies, and marketing partners. Lensa partners with DirectEmployers to promote this job for Home Depot. Clicking "Apply Now" or "Read more" on Lensa redirects you to the job board/employer site. Any information collected there is subject to their terms and privacy notice.

Position Purpose

The Home Depot is seeking a skilled Senior Cybersecurity Engineer with expertise on SIEM platforms such as Cortex XSIAM, Splunk, or similar tools. The ideal candidate will be responsible for maintaining and optimizing SIEM configurations to enhance threat detection and incident response capabilities, developing and fine-tuning detection use cases, and collaborating with SOC to support incident response efforts to protect enterprise assets.

Job Description

• Maintain day to day operational health monitoring of SIEM infrastructure and data feeds
• Coordinate or perform troubleshooting and break/fix efforts during service downtime
• Collaborate with external teams to onboard new data sources
• Apply event data to existing security use cases and models
• Write custom extractions in RegEx
• Validate appropriate extraction, parsing, and formatting in event data
• Coordinate with technology teams to ensure appropriate log level configurations
• Review and filter events to reduce unnecessary log ingestion
• Conduct research to baseline normal activity and tune out noise from alerting
• Tune security use cases and models to provide high fidelity alerting
• Develop and configure dashboards for monitoring event trends and alerts
• Configure reporting to provide key metrics and trends to leadership
• Collaborate to develop new, custom security use cases, log correlations, and data models
• Collaborate to send alerting to Incident Management and/or SOAR platforms
• Collaborate to integrate automation with the SIEM platform
• Collaborate to ingest and apply enrichment data in the platform
• Review, test, and perform upgrades to SIEM platform
• Maintain updated service documentation
• Create and maintain alert use case documentation
• Provide subject matter expertise for SIEM platform and processes
• Perform other related duties as assigned
  
  

Required Skills

• 3 years of cyber security work experience
• 1 years of SIEM specific work experience with platforms such as Cortex XSIAM, Splunk, etc.
• Good understanding of networking infrastructure concepts, technologies, and protocols
• Capable of identifying gaps in logging/monitoring and recommending solutions
• Able to bridge the gap between technical and non-technical constituents
• Solid people, team, and communication skills
  
  

Preferred Skills

• CCSP, SSCP, GCDA, GSEC, or equivalent certifications
• SIEM vendor specific certifications
• Experience with PCI compliant environment
• Incident Response / forensic work experience
• Experience working with cloud-based solutions, such as Azure, GCP
• Experience with Linux/Unix Administration
• Experienced with writing formal reports
  
  

Key Responsibilities

• 100% Deliver Execution, Plans & Align, Problem Solving - Design automation workflows and capabilities in support of data collection, investigation and incident response Develop threat hunting and data analysis strategy and capabilities Identify and propose new technologies, methodologies and/or approaches to detecting malicious activity Utilize indicators to scope and respond proactively to emerging threats Design, build, configure, maintain and monitor cybersecurity threat defense capabilities and user access management
  
  

Direct Manager/Direct Reports

• This Position typically reports to Manager or Sr. Manager
• This Position has 0 Direct Reports
  
  

Travel Requirements

• No travel required.
  
  

Physical Requirements

• Most of the time is spent sitting in a comfortable position and there is frequent opportunity to move about. On rare occasions there may be a need to move or lift light articles.
  
  

Working Conditions

• Located in a comfortable indoor area. Any unpleasant conditions would be infrequent and not objectionable.
  
  

Minimum Qualifications

• Must be eighteen years of age or older.
• Must be legally permitted to work in the United States.
  
  

Minimum Education

• The knowledge, skills and abilities typically acquired through the completion of a high school diploma and/or GED.
  
  

Preferred Education

• No additional education
  
  

Minimum Years Of Work Experience

• 3 Competencies:
• Action Oriented
• Collaborates
• Communicates Effectively
• Customer Focus
• Drives Results
  
  

Benefits offered include health care benefits, 401K, ESPP, paid time off, and success sharing bonus. For a full list of the various benefits The Home Depot offers, visit https://careers.homedepot.com/our-benefits . We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class. - $120,000.00 - $180,000.00

If you have questions about this posting, please contact support@lensa.com