Job Closed

This listing is no longer active.

InstantServe LLC logo
InstantServe LLC

Changing People, Processes & Perceptions.

Security Operations Next-Gen SIEM Analyst

Security OperationsSecurity OperationsFull TimeRemoteMid LevelTeam 51-200H1B No SponsorCompany SiteLinkedIn

Location

United States

Posted

7 days ago

Salary

0

Seniority

Mid Level

No structured requirement data.

Job Description

Security Operations Next-Gen SIEM Analyst

InstantServe LLC

Role Description This project will optimize the agency's CrowdStrike SIEM and related CrowdStrike services to improve threat detection, monitoring, and response capabilities. The contractor will expand and tune telemetry, integrate additional high-value log sources, enhance security dashboards, and support the rollout of additional CrowdStrike services. The effort will increase visibility into endpoint and security risk, improve signal quality and correlation, and provide security leadership with clear insight into security operations effectiveness and overall risk posture. Expected Outcomes - Expanded and optimized CrowdStrike SIEM telemetry coverage - Integration of additional high-value log sources - Improved dashboards for operational and executive visibility - Enhanced detection fidelity and monitoring effectiveness - Clearer insight for leadership into endpoint risk and security operations performance Duties to Be Performed - Assess current CrowdStrike SIEM configuration, telemetry coverage, and log ingestion - Enable and tune additional CrowdStrike telemetry to improve visibility and signal quality - Identify and integrate new high-value log sources into CrowdStrike SIEM - Develop and refine security dashboards aligned to SOC and executive use cases - Assist with technical enablement and rollout of additional CrowdStrike services - Validate data quality, parsing, and correlation within the SIEM - Coordinate with Security Operations, IT Operations, and system owners - Identify gaps, risks, and improvement opportunities in monitoring and detection - Provide weekly status updates and monthly executive-level progress summaries - Deliver supporting documentation and recommendations to sustain improvements Deliverables - Summary of work performed and capabilities delivered - Documentation supporting all telemetry enablement, log integrations, and dashboard implementations - Measurable improvements in monitoring, detection, or visibility - Recommendations for future enhancements or next-phase efforts Qualifications - Demonstrated skill with documentation, reporting, and knowledge transfer - Experience with Stakeholder Engagement, and Executive Communication - Experience in SIEM Detection Engineering and Alert Optimization - Experience in Log Source Integration and Data Normalization - Hands-On Experience with CrowdStrike SIEM and Dashboard Development - Hands-On Experience with SIEM and Dashboard Development

Related Categories

Related Job Pages

More Security Operations Jobs

Full TimeRemoteTeam 1,001-5,000Since 2013H1B Sponsor

• You will respond to incidents as part of a distributed 24x7 operations and on-call schedule. • You will triage and respond to security events and alerts, ensuring quick and effective containment. • You will contribute to security investigations, conducting analysis and forensics across a range of data sources to determine the timeline and impact of security events. • You will build automations, including leveraging AI and agentic platforms, to deliver autonomous capabilities, expedite your work and scale the impact of the team. • You will communicate technical decisions through design docs and tech talks, and mentor junior security responders via security guidance, design reviews and code reviews.

Belgium
Cashea logo

SOC Engineer

Cashea

Compra ahora y paga después, en cuotas sin interés. El impulso que mereces.

Full TimeRemoteTeam 501-1,000Since 2022H1B No Sponsor

• Administrar y mantener el SIEM (Security Information and Event Management) • Administrar y mantener el SOAR (Security Orchestration, Automation, and Response) • Configurar fuentes de logs, asegurando la correcta ingesta de eventos de sistemas críticos • Diseñar y mantener reglas y alertas de correlación para la detección de amenazas • Desarrollar y mantener playbooks de respuesta a incidentes, estandarizando el proceso de análisis y contención • Ejecutar actividades de análisis de amenazas, triage y respuesta ante incidentes • Colaborar con equipos de infraestructura y desarrollo para mitigar riesgos y vulnerabilidades • Gestionar ejercicios de simulación de incidentes • Analizar alertas y realizar investigaciones de incidentes para identificar amenazas, explotaciones, vulnerabilidades o comportamientos anómalos • Contribuir a la automatización de tareas del SOC mediante desarrollo de herramientas, inteligencia de amenazas, integraciones o herramientas SOAR

Mexico
Full TimeRemoteTeam 1,001-5,000Since 2012H1B Sponsor

• Build strategic relationships with Optiv customers by supporting key customer-facing activities including on-going face to face relationship building and customer satisfaction-related efforts • Individual contributor acting as a delivery and services senior leader • Work with delivery teams and the client to create plans for accomplishing engagement objectives and a strategy that complies with professional standards and addresses the risks inherent in the engagement • Provide constructive on-the-job feedback and coaching to team members • Deliver effective services based on a thorough understanding of complex cyber security architectures and technology and ability to effectively apply it to client situations and environments • Use extensive knowledge of the client's business and industry to identify technological developments and evaluate impacts on the client's business • Perform project management and team leadership, inspire teamwork and responsibility with engagement team members, and use current technology and tools to enhance the effectiveness of deliverables and services • Understand Optiv and its service lines and actively assess what Optiv can deliver to serve clients • Create innovative insights for clients, adapts methods & practices to fit operational team needs & contributes to thought leadership documents • Understand the business requirements clearly and plan for effective utilization of resources, managing the change requests and risk planning, etc. • Enhance service delivery through frequent interaction with the end user and business sponsors • Understand the process gaps and propose preventive / corrective action where appropriate

Kansas + 1 moreAll locations: Kansas | Missouri
MNTN logo

Senior Security Operations Engineer

MNTN

The hardest working software in television.

Full TimeRemoteTeam 201-500H1B No Sponsor

Role Description We are seeking an experienced Senior Security Operations Engineer to lead and scale our security operations. You will be responsible for safeguarding our systems, networks, and data from cyber threats. This role requires a deep understanding of security monitoring, incident response, and automation, along with the ability to collaborate cross-functionally with IT, engineering, and compliance teams. This is a “hands on” technical role and a great opportunity to join a growing company with a large scale production environment. The right candidate will be a self-starter that can quickly put together a roadmap of security initiatives and work with engineering teams in a positive manner around implementing security controls. - Lead day-to-day security operations, including monitoring, detection, investigation, and response to security incidents. - Understand modern cloud infrastructure stacks and inject security controls in those stacks (e.g., Terraform, Kubernetes, CI/CD, ArgoCD, Github). - Develop, refine, and maintain SIEM rules, alerts, dashboards, and playbooks for proactive threat detection. - Drive incident response efforts, including triage, containment, eradication, recovery, and post-incident reporting. - Automate repetitive SecOps processes (e.g., enrichment, remediation, alert triage) to improve efficiency and reduce noise. - Conduct threat hunting activities to identify hidden threats and vulnerabilities. - Collaborate with devops and engineering teams to embed security best practices into systems and workflows. - Perform log analysis and security monitoring across cloud, endpoint, and network environments. - Lead security assessments and participate in vulnerability management and remediation programs. - Partner with compliance and risk management teams to support audits and regulatory requirements. Qualifications - 5+ years of hands-on experience in Security Operations. - Strong knowledge of SIEM platforms. - Expertise in threat detection, malware analysis, and forensic investigation. - Proficiency with scripting and automation tools (Python, Bash, etc.). - Solid understanding of network protocols, firewalls, IDS/IPS, EDR, and cloud security controls. - Experience with cloud platforms (AWS and GCP) and their native security services. - Familiarity with MITRE ATT&CK, NIST, ISO, and other security frameworks. - Excellent communication and leadership skills, with experience guiding teams or projects. - Security certifications a plus. Benefits - 100% remote within the US. - Flexible vacation policy. - Annual vacation allowance for travel-related expenses. - Three-day weekend every month of the year. - Competitive compensation. - 100% healthcare coverage. - 401k plan. - Flexible Spending Account (FSA) for dependent, medical, and dental care. - Access to coaching, therapy, and professional development. Company Description MNTN provides advertising software for brands to reach their audience across Connected TV, web, and mobile. MNTN Performance TV has redefined what it means to advertise on television, transforming Connected TV into a direct-response, performance marketing channel. Our web retargeting has been leveraged by thousands of top brands for over a decade, driving billions of dollars in revenue. - Our solutions give advertisers total transparency and complete control over their campaigns all with the fastest go-live in the industry. - As a result, thousands of top brands have partnered with MNTN, including Tarte, Decked, and National University.

United States