SIEM Engineer

We are seeking an experienced SIEM Engineer to support a State Government client within a 247365 security operations environment. The engineer will be responsible for managing, optimizing, and enhancing SIEM platforms using IBM QRadar and/or Palo Alto XSIAM , ensuring secure, reliable, and compliant operations.

Job Title: SIEM Engineer
Location: Remote
Positions: 2

Key Responsibilities

• Serve as the primary engineer managing SIEM platforms (QRadar / Palo Alto XSIAM).
• Oversee platform health, upgrades, sensors, collectors, and new log source onboarding.
• Collaborate with SOC analysts to tune alerts, use cases, dashboards, and search queries.
• Perform QVM and Nessus SCSEM scans; triage findings and fine-tune alerts.
• Support development of secure, compliant solutions with appropriate testing.
• Troubleshoot complex technical issues and guide teams on SIEM-related tasks.
• Provide engineering support for large Splunk environments (search heads, indexers, forwarders).
• Architect scalable frameworks for security automation and orchestration.
• Partner closely with Detection & Response leadership and State cybersecurity staff.

Required Skills

• IBM QRadar SIEM
• Palo Alto XDR / EDR / XSIAM
• Nessus
• Cribl
• SOC/SIEM engineering experience
• Use case and alert configuration
• Log source integration
• QVM and Nessus scanning proficiency

Preferred Skills

• Experience working with State Government agencies
• Hands-on SIEM platform upgrade experience
• Palo Alto XSIAM training or certification

Additional Notes

• Must be available for 247365 support coverage as required.
• Strong communication skills for collaboration with State cybersecurity teams.