Elastic SIEM Engineer

Job description

Elastic SIEM Engineer The Opportunity: Design, implement, integrate, and maintain systems and tools to automate complex cyber activities. Apply advanced consult ing skills or extensive technical expertise, including full industry knowledge. Develop innovative solutions to complex problems. Work without considerable direction, and mentor and supervise team members. You Have: - 3+ years of experience administering Elastic Stack, including Elasticsearch, Kibana, Logstash, Beats, or Fleet - Experience managing Elasticsearch index lifecycle policies , index templates, and data streams at scale, and building Kibana dashboards, visualizations, and lens-based analytics for security operations - Experience with Elastic Security detection rules, alerts, and case management workflows - Experience with log ingestion pipeline design, including parsing, enrichment, and normalization across heterogeneous log sources such as network, endpoint, identity, and cloud - Experience with Elastic Common Schema ( ECS ) and mapping non-standard log sources into ECS-compliant fields - Experience working in a DoD, IC, or federal cybersecurity environment such as SOC, SIEM operations, or defensive cyber - Know...