Security Engineer - SIEM / CrowdStrike

Job Summary

We are seeking a skilled Security Engineer (SIEM) to join a dynamic and growing security team within a leading regional professional services organization. This role is critical in enhancing and maintaining the organization s security posture, with a primary focus on administering SIEM and EDR platforms, leading security event detection and incident response efforts, and driving improvements in identity and cloud security capabilities. The Security Engineer will work closely with IT administrators, vendors, and stakeholders to ensure reliable and scalable security solutions.

Key Responsibilities

• Administer SIEM, EDR/NGAV, and Identity Protection solutions.

• Lead and enhance security event management, incident response preparation, orchestration, investigation, and reporting.

• Collaborate with managed security service providers to strengthen processes and relationships.

• Support and improve security technologies including SEG, PAM/VPAM, EPM, vulnerability scanning, and related tools.

• Contribute to cloud security strategies, including CNAPP, CI/CD pipeline guardrails, DevOps, and Azure CSP controls.

• Conduct threat and vulnerability analysis, coordinate remediation, and reduce attack surfaces.

• Stay current with emerging security threats, vulnerabilities, and industry practices; perform threat modeling and reporting.

• Develop and deliver security awareness training for end users.

• Participate in governance, policy development, and compliance monitoring.

• Provide consulting, troubleshooting, and project support across IT teams and business stakeholders.

Minimum Education & Experience Requirements

• Bachelor s degree in Information Systems, Technology, or a related field (or equivalent work experience).

• Minimum of 5 years of experience in Information Security with hands-on expertise in SIEM, EDR, and related technologies.

• Strong knowledge of IP networking, cloud security principles, and enterprise security architecture.

• Demonstrated experience with information security event management and incident response.

• Proficiency with malware detection and remediation technologies.

• Familiarity with ISO/IEC 27001:2022 ISMS principles.

Special Requirements

• Experience with platforms such as CrowdStrike, Palo Alto, Tenable, and Azure (or comparable solutions).

• Proficiency with scripting/query languages (e.g., Python, PowerShell, CQL, XQL).

• Strong ability to clearly communicate technical concepts to technical and non-technical stakeholders.

Knowledge, Skills, and Abilities

• In-depth knowledge of information security operations, solutions, and emerging technologies.

• Expertise in security tools including EDR, PAM, MFA, SIEM, and NGFW.

• Strong analytical and problem-solving skills with a proactive approach to threat detection and remediation.

• Ability to develop and document processes, SOPs, and security policies.

• Collaborative mindset with a focus on providing exceptional customer service.

Additional Desired Characteristics

• Experience with database, Windows/Linux, and network security.

• Familiarity with vulnerability management and patching processes.

• Ability to balance security needs with usability and business priorities.

Work Environment

• Professional office setting with hybrid or regional flexibility.

• May require occasional travel for training, conferences, or vendor collaboration.

• Role involves interaction with technical teams, business stakeholders, vendors, and clients.