Senior SIEM Engineer (Palo Alto Cortex XSIAM)-W2 Only

Columbia, SC, US • Posted 2 days ago • Updated 2 days ago
Contract W2
Contract Corp To Corp
1 Year
No Travel Required
On-site
Depends on Experience
Fitment

Dice Job Match Score™

📋 Comparing job requirements...

Job Details

Skills

  • system deployments
  • Palo Alto Cortex
  • XSIAM
  • Cortex XDR design
  • SIEM

Summary

Role: Senior SIEM Engineer (Palo Alto Cortex XSIAM)-W2 Only

Remote

Duration of the Contract: 12 Months with Possibility for Extension

Summary:

IRG Clients is seeking an experienced SIEM Engineer to design, implement, and support enterprise security monitoring and threat detection solutions. The ideal candidate will have hands-on experience with Palo Alto Cortex XSIAM, Cortex XDR, and SIEM technologies in large-scale, multi-tenant environments. Responsibilities include security engineering, detection content development, automation, log management, platform optimization, incident response support, and collaboration with Security Operations Center (SOC) teams. Experience with Cribl, log pipeline design, data normalization, dashboards, reporting, and security integrations is highly preferred.

Responsibilities:

  • Work remotely and provide support for a 24/7 Security Operations Center (SOC) with on-call duties.
  • Help set up, manage, and support security tools like Palo Alto Cortex XSIAM and Cortex XDR.
  • Monitor, troubleshoot, and maintain security monitoring systems.
  • Add and manage multiple organizations in security platforms with proper access, dashboards, and reports.
  • Create and improve security alerts, detection rules, and threat-hunting queries.
  • Manage security logs and data collection using tools like Cribl.
  • Connect security data from cloud, endpoints, networks, and applications.
  • Improve system performance, storage, and security data management.
  • Integrate security tools with ticketing, identity, and threat intelligence systems.
  • Create automated workflows and playbooks for security incident response.
  • Maintain security documentation, procedures, and troubleshooting guides.
  • Provide technical support to SOC analysts and security teams.
  • Assist with threat hunting, alert tuning, and security investigations.
  • Monitor security platform performance, health, and availability.
  • Support system upgrades, backups, recovery, and maintenance activities.
  • Collaborate with security teams and stakeholders to ensure security requirements are met.

Required Skills:

  • Bachelor's Degree in an Information Technology or Information Security related field (8+ years of relevant work experience may be substituted in lieu of education)
  • 5+ years of experience support large IT environments and/or system deployments
  • Hands-on experience with Palo Alto Cortex, XSIAM, and Cortex XDR design, implementation, administration and operational support.
  • Experience engineering and supporting SIEM capabilities for multi-tenant environments and 24x7 Security Operations Center operations.
  • Experience developing and tuning detections, correlation rules, analytics, threat-hunting queries, dashboards, reporting and alert suppression logic.
  • Experience creating and managing complex playbooks
  • CRIBL Data Modeling, log pipeline design, parsing, normalization, enrichment, routing and ingestion.
  • Experience developing automation, integrations, playbooks and response workflows using scripting languages such as Python and Bash.
  • Experience onboarding and troubleshooting telemetry from cloud, endpoint, network, identity, SaaS, Linux, Windows and custom application sources.
  • Strong understanding of enterprise security architecture, incident response, networking, access control, secure system design and industry-standard cybersecurity frameworks.

Preferred Skills:

  • CISSP, Security+ or GIAC certification
  • Palo Alto Cortex, Cribl or other relevant SIEM/security platform certification
  • Hands-on experience operating Cortex XSIAM and Cortex XDR in a large, multi-tenant environment.
  • Hands-on Cribl administration, data modeling and log pipeline optimization experience.
  • Experience supporting Tier 1 through Tier 3 SOC analysts, threat hunting, incident response and 24x7 operational handoffs.
  • Familiarity with industry-standard security and compliance frameworks and experience developing playbooks, runbooks, procedures and technical documentation.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: 10113386
  • Position Id: 29127-677-
  • Posted 2 days ago
Contact the job poster
Susmita Sahu

Susmita Sahu

Lead Recruiter @ Information Resource Group, Inc.
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Remote or Columbia, South Carolina

Today

Easy Apply

Contract, Third Party

$$80/hr on W2

Columbia, South Carolina

Today

Easy Apply

Full-time, Third Party, Contract

$DOE

Columbia, South Carolina

2d ago

Easy Apply

Contract, Third Party

Depends on Experience

Remote or Columbia, South Carolina

Today

Easy Apply

Contract

Search all similar jobs