GuidePoint Security is seeking an experienced SIEM Engineer/Developer to lead the design, implementation, and optimization of SIEM / SOAR / Data Pipeline solutions to enhance cybersecurity posture and minimize risk for their clients.
Requirements
- 5+ years of experience in security engineering, with a primary focus on SIEM / SOAR platforms
- Experience with data and observability pipeline tools
- Strong knowledge of log formats, data normalization, and event correlation.
- Familiarity with detection engineering, threat modeling, and MITRE ATT&CK framework
- Proficiency with scripting (e.g., Python, PowerShell, Bash) and regular expressions
- Deep understanding of logging from cloud (AWS, Azure, GCP) and on-prem environments
- SIEM / SOAR / Data Pipeline tool certifications
Responsibilities
- Architect, implement, and maintain SIEM / SOAR / Data Pipeline solutions with a focus on modern platforms
- Design and manage log ingestion pipelines
- Optimize data routing, enrichment, and filtering to improve SIEM efficiency and cost control
- Collaborate with cybersecurity, DevOps, and cloud infrastructure teams to integrate log sources and telemetry data
- Develop custom parsers, dashboards, correlation rules, and alerting logic for security analytics and threat detection
- Maintain and enhance system reliability, scalability, and performance of logging infrastructure
- Provide expertise and guidance on log normalization, storage strategy, and data retention policies
Other
- This position is remote, but preference will be given to candidates located on the U.S. East Coast to align with team collaboration and customer support hours.
- some travel may be required for certain positions, working on-site may be required for Federal positions
