SIEM ARCHITECT

Remote • Posted 13 days ago • Updated 6 days ago

Contract Corp To Corp

Contract W2

Remote

$DOE

Fitment

Dice Job Match Score™

🧠 Analyzing your skills...

Job Details

Skills

SIEM
Palo Alto Cortex XDR

Summary

HMG America LLC is the best Business Solutions focused Information Technology Company with IT consulting and services, software and web development, staff augmentation and other professional services. One of our direct clients is looking for SIEM ARCHITECT in Remote. Below is the detailed job description.

Title: SIEM ARCHITECT

Location: Remote

Duration: Long term

SIEM Cortex XDR Platform Architect

Job Description:

We are seeking an experienced Security Architect to lead the design, deployment, and optimization of Palo Alto Cortex XDR across enterprise environments. The role requires deep expertise in SIEM and SOAR Platform, strong exposure to security automation, and hands-on experience integrating with SIEM platforms for centralized monitoring and incident response.

The architect will drive advanced threat detection, automated response use cases, and SOC modernization initiatives while aligning security operations with best practices and zero-trust principles.

Key Responsibilities

XDR Architecture & Strategy

Design and own the Cortex XDR architecture across endpoints, servers, and cloud workloads
Define XDR onboarding strategy for endpoints, network, and cloud telemetry
Establish detection, prevention, and response standards aligned with MITRE ATT&CK
Lead XDR roadmap, capacity planning, and platform optimization

Cortex XDR Implementation & Operations

Architect and deploy Palo Alto Cortex XDR:
- Endpoint protection, behavioral analytics, and threat prevention
- Incident correlation and root cause analysis
Tune detection policies, alert thresholds, and prevention profiles
Oversee agent deployment, upgrades, and performance optimization

Automation & SOAR

Design and implement security automation and response workflows
Integrate Cortex XDR with SOAR platforms (Cortex XSOAR preferred)
Develop automated playbooks for:
- Alert triage and enrichment
- Containment and remediation (endpoint isolation, user disablement, IOC blocking)
Leverage APIs, scripting, and integrations to reduce manual SOC effort

SIEM Integration & Monitoring

Integrate Cortex XDR with SIEM platforms (Splunk, Sentinel, QRadar, etc.)
Design log ingestion, normalization, and correlation use cases
Build dashboards and alerts for SOC visibility and executive reporting
Optimize signal-to-noise ratio across SIEM and XDR platforms

Threat Detection & Incident Response

Define and validate advanced detection use cases
Lead threat hunting initiatives using XDR and SIEM telemetry
Support incident response investigations and post-incident reviews
Continuously improve detections based on emerging threats

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 10481867
Position Id: 2026-17503
Posted 13 days ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Remote or Hybrid in New York, New York

•

5d ago

About the EngagementWe are seeking a senior-level Security Operations Consultants to lead the deployment, calibration, and process transformation associated with our migration from IBM QRadar and IBM Cloud Pak for Security (CP4S) to Palo Alto Networks XSIAM (Extended Security Intelligence and Automation Management). This engagement is ideal for seasoned SOC practitioners who not only have hands-on XSIAM or XSOAR expertise, but who also bring the vision, architecture mindset, and operational mat

Easy Apply

Contract

Depends on Experience

Cyber security Elastic SIEM and security analytics

Remote

•

7d ago

We are seeking a highly experienced Cybersecurity professional with deep expertise inElastic SIEM and security analytics. The role involves designing, implementing, and managing Elastic-based security monitoring solutions, leading threat detection initiatives, and supporting incident response and SOC operations across enterprise environments. Key Responsibilities Elastic SIEM & Security Operations Design, deploy, and manageElastic Stack (Elasticsearch, Logstash, Kibana, Beats / Elastic Agent)Imp

Easy Apply

Contract

80 - 85

Senior SIEM Engineer

Remote or Milwaukee, Wisconsin

•

Today

Rockwell Automation is a global technology leader focused on helping the world's manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility - our people are energized problem solvers that take pride in how the work we do changes the world

Full-time

Sr. SOC Engineer

Remote

•

Today

Software Guidance & Assistance, Inc., (SGA), is searching for an Sr. SOC Engineer for a Contract assignment with one of our premier Regulatory clients . About the Role We are seeking a highly skilled Senior SOC Security Engineer with deep expertise in Application Security to join our dynamic cybersecurity team. This role requires flexibility to support our 24x7x365 Security Operations Center, including regular off-hours coverage. This role blends real-time threat detection and response with

Contract

Search all similar jobs

SIEM ARCHITECT

Dice Job Match Score™

Job Details

Skills

Summary

Similar Jobs