SIEM/Tool Engineer

Job description

Responsibilities We are seeking a highly skilled and innovative SIEM/Tool Engineer to join our team in the greater DMV area, supporting the Army National Guard. Responsibilities: - Architect, administer, and scale enterprise SIEM and security monitoring platforms; integrate telemetry from network, endpoint, cloud, identity, and OT sources. - Develop and maintain parsing/normalization logic, data enrichment pipelines, dashboards, alerting, and automated workflows to support detection and analytic scalability. - Implement performance optimization strategies, capacity planning, and tuning to ensure reliable, high‑volume ingestion and query performance. - Lead platform upgrades, patching, health monitoring, configuration management, and high‑availability operations to sustain operational resilience. - Build and maintain reusable correlation rules, detection content, and analytic libraries; collaborate with detection engineers to operationalize use cases. - Design and oversee retention, storage, and evidence export processes to support investigations, RMF/evidence needs, and auditability. - Troubleshoot platform issues, conduct root‑cause analysis of ingestion/parsing failures, and coor...