The world's trusted engineering network
SIEM and Security Architecture Engineer
Location
Ireland
Posted
1 day ago
Salary
0
Seniority
Senior
Job Description
SIEM and Security Architecture Engineer
Castillians
• Be part of our Global Engineering Network! • Design and implement a high-availability IBM QRadar SIEM architecture to ensure resilience, scalability, and business continuity. • Perform platform sizing and capacity planning based on log volume, EPS/FPS requirements, retention policies, and future growth. • Lead the deployment, configuration, and optimization of the IBM QRadar platform. • Plan and execute the migration from the existing SIEM solution to IBM QRadar with minimal service disruption. • Integrate, collect, parse, and normalize logs from diverse security devices, network infrastructure, servers, applications, cloud services, and endpoint solutions. • Develop, tune, and maintain correlation rules, use cases, offenses, and detection content aligned with the MITRE ATT&CK framework. • Optimize SIEM performance by reducing false positives and improving detection accuracy. • Configure and manage access security, including Multi-Factor Authentication (MFA), LDAP / Active Directory integration, Role-Based Access Control (RBAC). • Ensure compliance with security standards and organizational policies. • Produce technical documentation, architecture diagrams, deployment guides, and operational procedures. • Collaborate with SOC analysts, infrastructure teams, and cybersecurity stakeholders to continuously improve monitoring and incident detection capabilities. • Provide technical support, troubleshooting, and knowledge transfer to operational teams.
Job Requirements
- Bachelor's degree in Computer Science, Information Security, Engineering, or a related field.
- Proven experience designing, deploying, and administering IBM QRadar SIEM in enterprise environments.
- Strong expertise in SIEM architecture, high-availability design, and platform sizing.
- Hands-on experience with SIEM migration projects.
- Solid knowledge of log collection, parsing, normalization, and event management.
- Experience developing and tuning correlation rules and detection use cases aligned with the MITRE ATT&CK framework.
- Experience integrating QRadar with LDAP/Active Directory, MFA, and Role-Based Access Control (RBAC).
- Strong understanding of cybersecurity principles, network security, and security monitoring.
- Excellent analytical, troubleshooting, and problem-solving skills.
- Strong communication skills and the ability to collaborate with technical and business stakeholders.
Benefits
- Clear scope with no ambiguity over deliverables.
- Opportunity for repeat engagements based on performance.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
National Security Specialist
Pacific Northwest National LaboratoryPacific Northwest National Laboratory (PNNL) is a world-class research institution powered by a highly educated, diverse workforce committed to the values of Integrity, Creativity, Collaboration, Impact, and Courage. Every year, scores of dynamic, driven people come to PNNL to work with renowned researchers on meaningful science, innovations, and outcomes for the U.S. Department of Energy and other sponsors. At PNNL, you will find an exciting research environment and excellent benefits including health insurance and flexible work schedules. PNNL is located in eastern Washington State—the dry side of Washington known for its stellar outdoor recreation and affordable cost of living.
Role Description PNNL's National Security Directorate (NSD) provides the tools, technologies, and training needed to prevent and counter acts of terrorism and the proliferation of weapons of mass destruction (WMD), helping the United States secure its sources, materials, and borders. NSD experts directly support a range of U.S. government departments across critical national security mission areas, including: - Safeguards and security - Cybersecurity - Emergency response - Counterintelligence Within NSD, the Integrated Security Solutions (ISS) group focuses on understanding the full range of security domains and their interdependencies, applying that insight to develop new and effective ways to keep our nation safe. A primary focus of this position is supporting the National Nuclear Security Administration's (NNSA) Office of Radiological Security (ORS), which works to secure high-activity radiological materials at civilian sites across the United States and internationally. Specifically, this role will support ORS domestic implementation teams in executing the new ORS Prevent mission, providing direct technical expertise as a National Security Specialist (NSS) at PNNL. The selected candidate will be organizationally based within the ISS group in NSD while remaining directly accountable to PNNL's ORS Program for project execution and reporting to the assigned ORS Project Manager for day-to-day project activities. This position involves frequent, high-level engagement with senior government, political, and industry stakeholders, including leadership at U.S. Department of Energy (DOE) Headquarters, other U.S. government agencies, hospital administrators, university leadership, and regulators. It offers a meaningful opportunity to make a lasting, positive impact on the security of the nation by helping safeguard high-consequence materials and strengthen the protective posture of critical sites and assets. Additional responsibilities include: - Provide technical expertise in the development, operation, and implementation of security systems, operational security, nuclear material safeguards, vulnerability assessments, risk analysis, security policy, and critical infrastructure protection. - Apply specialized knowledge of equipment and technologies deployed for physical security, WMD counter-proliferation, and interdiction operations. - Develop and implement training, exercises, procedures, logistics strategies, concept of operations, planning, and assessment techniques and tools associated with the deployment, operation, maintenance, and sustainability of these systems. - Conduct assessments, evaluations, and analysis of these systems to support troubleshooting, forecast reliability and sustainability challenges, and identify opportunities for technological or operational enhancements. - Utilize breadth and depth of knowledge related to national and international safeguards and security policies and guidelines in the development and implementation of security strategies. - Areas of emphasis include program planning and management, system design and analysis, tactics and training, requirements definition, and operational sustainability. - Serve as a technical subject matter expert for procurement, installation, and maintenance of integrated systems, including identification of R&D opportunities associated with next-generation security systems, counter-proliferation, and interdiction technologies. - Communicate with a wide range of federal, state, and local authorities regarding policies, requirements, and conduct of operations both domestically and internationally. Qualifications - Minimum Qualifications: - BS/BA and 7 years of relevant experience -OR- - MS/MA or higher and 5 years of relevant experience -OR- - AA and 16 years of relevant experience -OR- - HS/GED and 18 years of relevant experience - Qualifying experience in the following areas will be counted: Department of Energy, Department of Defense, Homeland Security, intelligence community or military that supports national security or radiation detection/protection operations. - Preferred Qualifications: - Physical Security Systems: Hands-on experience designing, implementing, configuring, and maintaining physical security components, including access control, intrusion detection, video surveillance, and delay/denial systems, preferably in support of high-consequence assets such as radiological materials or critical infrastructure. - Security Planning & Assessment: Demonstrated experience developing site security plans and executing self-assessments, performance testing, and vulnerability discovery to identify and close gaps in protective postures. - Training, Delivery & Mentoring: Proven ability to design and deliver technical training to diverse audiences, and to mentor staff and partners by building rapport and trusted relationships across all levels of an organization, from front-line operators to executive leadership. - Cybersecurity Fundamentals: Working knowledge of cybersecurity principles as they relate to the integration, hardening, and protection of networked physical security systems and operational technology (OT) environments. - Response & Law Enforcement Training: Experience providing response-focused training to law enforcement and security personnel through workshops, tabletop and field exercises, and on-site delivery of operational training. - Federal Program Experience: Prior experience supporting the U.S. Department of Energy (DOE), National Nuclear Security Administration (NNSA), Nuclear Regulatory Commission (NRC), or comparable federal agencies, including effective communication with senior government officials, regulators, and program leadership. - Insider Threat Mitigation: Experience supporting insider threat programs, including risk assessment, behavioral indicators, and integration with broader physical and cyber security controls. - Uncrewed Systems (UxS) Knowledge: Experience with uncrewed systems (aerial, ground, or maritime), including both UxS operations and counter-UxS strategies for protecting high-value targets and facilities. - Professional Certifications: Industry-recognized security certifications such as Physical Security Professional (PSP) or Certified Protection Professional (CPP). Requirements - U.S. Citizenship - Background Investigation: Applicants selected will be subject to a Federal background investigation and must meet eligibility requirements for access to classified matter in accordance with 10 CFR 710, Appendix B. - Drug Testing: All Security Clearance positions are Testing Designated Positions, which means that the applicant selected for hire is subject to pre-employment drug testing, and post-employment random drug testing. In addition, applicants must be able to demonstrate non-use of illegal drugs, including marijuana, for the 12 consecutive months preceding completion of the requisite Questionnaire for National Security Positions (QNSP). - Testing Designated Position: This position is a Testing Designated Position (TDP). The candidate selected for this position will be subject to pre-employment and random drug testing for illegal drugs, including marijuana, consistent with the Controlled Substances Act and the PNNL Workplace Substance Abuse Program. Benefits - Medical insurance - Dental insurance - Vision insurance - Robust telehealth care options - Several mental health benefits - Free wellness coaching - Health savings account - Flexible spending accounts - Basic life insurance - Disability insurance* - Employee assistance program - Business travel insurance - Tuition assistance - Relocation - Backup childcare - Legal benefits - Supplemental parental bonding leave - Surrogacy and adoption assistance - Fertility support - Employees are automatically enrolled in our company-funded pension plan* and may enroll in our 401 (k) savings plan with company match* - Employees may accrue up to 120 vacation hours per year - Employees may receive ten paid holidays per year
• Monitor security events and provide technical analysis on alerts • Lead information security incidents and employee insider investigations by developing the incident response strategy, lead the execution through incident closure, while providing incident updates to key stakeholders throughout the incident • Deliver security guidance clearly and concisely for incident response and insider threat initiatives • Coordinate the building of services, capabilities, integrations, and implementations of technologies to support security operations, incident response, and insider threat • Champion, role model, and embed Samsara’s cultural principles as we scale globally and across new offices • Participate in our on-call rota covering weekends
Cyber Security Engineer
GovCIOGovCIO is a service-disabled-veteran-owned small business (SDVOSB) that offers technology services to improve business performance for government organizations.
Role Description The Cybersecurity Systems Engineer requires skills in IT operations, IT engineering, and cybersecurity. They will be responsible for ensuring that cybersecurity controls are appropriately integrated into Information Technology projects and ensuring the seamless interoperability of security tooling across a mix of cloud and on-premises environments. This position will be within the United States and will be fully remote. - The engineer is responsible for the day-to-day maintenance of Red Hat Enterprise Linux (RHEL) and Windows servers, including patching, upgrading, and scanning of systems. - The engineer will help review new configurations that will be pushed to firewalls and other security devices. - The engineer will create change requests as needed for network changes to ensure the continued connectivity of all security systems. - Responsible for ensuring that cybersecurity controls are appropriately integrated into Information Technology projects. - Responsible for ensuring the seamless interoperability of security tooling across a mix of cloud and on-premises environments. Qualifications - Bachelor’s degree in Computer Science, Information Technology, Engineering, or equivalent experience. - 12+ years (or commensurate experience). - Minimum of 6 years’ experience in a cybersecurity role with at least 2 years in a cybersecurity engineering role. - Must have a minimum of 5 years of operational experience with Linux servers, Windows servers, and security devices including IDS/IPS, firewalls, proxy servers, and web application firewalls. - Minimum of 2 years’ experience integrating IT projects using a commercial cloud provider. - Minimum of 2 years’ experience using automation platforms for system orchestration. - Minimum of 2 years’ experience in a role focused on integrating disparate IT systems into a cohesive workflow. - Proficient in Python coding with at least 1 year of demonstrated experience coding as part of a work role. - Detailed understanding of the Risk Management Framework, NIST 800-53 rev 5 control family, and the Cybersecurity Framework. - In-depth understanding of advanced networking, operating systems, and cybersecurity architectures. Requirements - Strategic thinker with practical hands-on implementation experience. - Strong problem-solving, stakeholder management, and facilitation skills. - Ability to work across 24/7 operational teams and influence cross-functional processes. - Detail-oriented with a focus on resiliency, security, and automation. - Must be able to attain and maintain an AOUSC Public Trust clearance. Preferred Skills and Experience - Master’s preferred. - Active Directory experience (both traditional and Azure AD) are a plus. - TOGAF, AWS/Azure/GCP Cloud Architect, CCNP/CCIE, CISSP, or equivalent. Posted Salary Range USD $150,000.00 - USD $170,000.00 /Yr.
Senior Security Engineer
Brave SoftwareWe're building a more private Internet by stopping trackers, making Web3 more accessible and reimagining advertising.
• Security reviews of Brave products • Triaging and fixing security reports • Designing and implementing security-relevant code • Penetration tests of Brave products and infrastructure



