| Description | Piper Companies is seeking a Remote SIEM Engineer (Cortex XSIAM) to join a premier cyber security organization. The SIEM Engineer will work with clients to determine a suitable detection strategy helping to protect customers from threats by designing and implementing correlation rules. Responsibilities of the SIEM Engineer include: Work with technical lead to develop log ingestion strategy Contribute to detection strategy based on industry best practices Detail step-by-step process to ingest high-quality log sources Perform log source monitoring and optimization Create high-quality correlation rules Tune log sources and correlation rules Be an Subject Matter Expert (SME) for SIEM Correlation and Log Source Ingestion Recognize opportunities where automation can improve analyst alert handling Collaborate with internal and external teams to ensure product adoption Create technical documentation detailing SIEM aspects of the engagement Travel to customer meetings and workshops as needed (10%) Qualifications for the SIEM Engineer include: 6+ years of deploying and integrating (SIEM) to enterprise to large enterprise-level Coordinating and conducting event collection log management event management compliance automation and identity monitoring activities using (SIEM) platforms The ability to create and develop correlation and detection rules within a (SIEM) to support alerting capabilities Experience working with and deploying a variety of SIEM technologies (i.e. Splunk IBM QRadar) Strong Regular Expression skills Ability to understand logs locating and understanding 3rd party documentation where needed Familiarity with reports on the status of the SIEM to include metrics on items such as number of logging sources - log collection rate and other performance metrics Knowledge of Security Analysis & Response a plus including both endpoint network & cloud-based environments Experience with Security Operation Centers tooling and processes Compensation for the SIEM Engineer includes: Salary: $130000 – $150000 Full benefits: Healthcare Dental Vision 401k Flexible work schedule Comprehensive Benefits: Medical Dental Vision 401K PTO Sick Leave and Paid Holidays This job opens for applications on 8/21/2025. Applications will be accepted for at least 30 days from the posting date. Keywords: #LI-MM1 #LI-REMOTE SIEM Engineer SIEM Consultant Cortex XSIAM log migration detection strategy log ingestion correlation rules industry best practices customer requirements log source monitoring automation technical documentation event collection log management compliance automation identity monitoring Regular Expression Security Analysis & Response Security Operation Centers CISSP GIAC technical design documentation |