Full-Time Senior SIEM Engineer

About CoalfireCoalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape.

Position SummaryWe’re looking for a Senior SIEM Engineer to play a central role in implementing and maintaining robust security monitoring solutions—ensuring our clients stay protected against emerging cyber threats and remain compliant with industry standards.

What You'll Do

1. Collaborate with a high-performing engineering team to deliver specialized security and cloud solutions across private and public sector environments.
2. Implement, update, and maintain security tooling solutions (e.g., Trend Micro, CrowdStrike, Microsoft Defender) to ensure robust threat detection, AV protection, and compliance.
3. Implement, maintain, and update SIEM solutions (e.g., Splunk, Sentinel, ELK, LogRhythm, Sumo Logic) to enhance visibility and proactively mitigate cyber threats.
4. Develop client cloud and security strategies, including future-state architectures, roadmaps, and transformation plans.
5. Conduct cloud configuration and maturity reviews to identify gaps, optimize performance, and strengthen security posture.
6. Coordinate with clients and internal teams to establish the right balance of defense-in-depth techniques, translating security objectives into secure, scalable solutions.
7. Leverage Infrastructure-as-Code to build and implement secure and compliant enterprise servers, network infrastructures, boundary protections, and cloud architectures.
8. Provide guidance during security assessment and authorization processes, ensuring alignment with industry frameworks and compliance standards.
9. Author and peer-review detailed design documentation, including security documentation and vendor best practices, to maintain consistently high-quality deliverables.

What You'll Bring

• 5+ years of hands-on systems engineering and architecture experience
• 5+ years of cloud experience
• Advanced proficiency with Infrastructure-as-Code and orchestration/automation tools (e.g., Terraform, Ansible)
• Proven expertise with SIEM platforms and enterprise antivirus solutions
• Deep understanding of AWS, Azure, or GCP platform capabilities

Bonus Points

• Professional services background
• Advanced threat detection
• Automation capabilities

What is the last date for applying to the job?

Which countries are accepted for this remote job?