Optiv

Principal Consultant - SIEM | Remote, USA

Optiv$134K — $184K *
US-AnywhereRemote in Denver, CO
Information Technology
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree and 10-15 years of information security or technology consulting experience
  • 8-10 years of hands-on security architecture experience focused on SIEM
  • Deep expertise in SIEM concepts such as log collection, detection engineering, and SOC workflows
  • Strong practical experience with modern SIEM platforms like Google SecOps and Microsoft Sentinel
  • Understanding of adjacent security domains including incident response and threat detection
  • Familiarity with scripting languages like KQL, Python, and PowerShell
  • Relevant certifications like CISSP or CISM, or willingness to pursue them

Responsibilities

  • Work with customers to define security operations and detection requirements
  • Architect and validate SIEM solutions to meet risk reduction and operational goals
  • Lead design, deployment, and optimization of SIEM platforms
  • Develop SIEM and SOC transformation engagement plans
  • Rationalize SIEM technologies against business needs and risk posture
  • Serve as an expert in SIEM architecture and SOC operations
  • Mentor other consultants on complex SIEM programs
  • Present SIEM strategies to technical and executive audiences
  • Adapt SIEM methodologies based on client maturity and capabilities
  • Contribute to industry groups and thought leadership initiatives

Benefits

  • Comprehensive compensation and benefits package
  • Participation in a variable incentive-based bonus plan
  • Travel opportunities to meet client needs
  • Support for ongoing professional development and certification pursuits
Full Job Description
The Principal SIEM Consultant will be pivotal to problem definition, requirements discovery, and overall SIEM solution design, guiding teams through complex security analytics and operations engagements. This individual will drive the technical relationship with customers and partners by providing advanced SIEM architecture, implementation, integration, and operational leadership across modern platforms including Google SecOps, Microsoft Sentinel, CrowdStrike NG-SIEM, and Palo Alto XSIAM.

Acts as an industry leader and champion of technical excellence in Security Information and Event Management (SIEM), delivering exceptional services and support to strategic clients and setting the bar for others to aspire to.

How you'll make an impact
• Work with customers to articulate business, security operations, and detection requirements and translate those needs into effective SIEM use cases, architectures, and operational models.
• Architect and validate SIEM solutions to ensure the customer's risk reduction, visibility, and detection engineering objectives are met.
• Lead SIEM platform design, deployment, migration, and optimization efforts across Google SecOps, Microsoft Sentinel, CrowdStrike NG-SIEM, and Palo Alto XSIAM.
• Assist with development of SIEM and SOC transformation engagement plans that enable customers to execute detection, response, and analytics strategies.
• Rationalize SIEM, logging, and security analytics technologies against business requirements, risk posture, cost constraints, and operational maturity.
• Serve as a recognized expert in SIEM architecture, log onboarding, detection engineering, UEBA, SOAR integration, and SOC operations.
• Lead and mentor other consultants on complex SIEM programs, providing technical direction and quality oversight across engagements.
• Able to present to large technical and executive audiences; speaks as an authority on SIEM strategy and security operations.
• Confidently handles difficult technical and strategic questions, consistently gaining trust and support from client stakeholders.
• Able to adapt and evolve SIEM delivery methodologies based on client maturity, platform capabilities, and operational constraints.
• Maintains broad awareness of the cybersecurity, SOC, and security analytics technology landscape beyond SIEM alone.
• Contributor to industry groups, thought leadership initiatives, whitepapers, or publications related to SIEM, SOC, or security operations.

What we're looking for
• Bachelor's degree and approximately 10-15 years of related information security or technology consulting experience.
• Approximately 8-10 years of hands-on security architecture experience with a strong focus on SIEM and security operations platforms.
• Deep expertise in SIEM concepts including log collection and normalization, detection engineering, alerting strategy, content lifecycle management, SOC workflows, and integration with SOAR and EDR platforms.
• Strong practical experience with one or more modern SIEM platforms such as Google SecOps, Microsoft Sentinel, CrowdStrike NG-SIEM, and Palo Alto XSIAM.
• Strong understanding of adjacent security domains including incident response, threat detection, vulnerability management, data classification, and security governance.
• Understanding of the professional services business and the organizational impact of technical and delivery decisions.
• Solid understanding of networking (TCP/IP, OSI model), operating systems (Windows, Linux/UNIX), cloud platforms, and modern security technologies (EDR, NDR, firewalls, IDS/IPS).
• Familiarity with scripting and automation languages commonly used in SIEM environments (e.g., KQL, Python, PowerShell, YAML).
• Strong understanding of regulatory and compliance requirements impacting security monitoring and log retention, including PCI DSS, GLBA, GDPR, and U.S. state privacy laws.
• Proven experience integrating SIEM platforms into complex enterprise and cloud environments, including log pipelines, APIs, and security tooling ecosystems.
• Willingness to travel to meet client needs.
• Valid driver's license in the U.S. and a valid passport required.
• The successful candidate must hold or be willing to pursue relevant certifications such as CISSP, CISM, CISA, or SIEM-specific platform certifications.
• Strong interpersonal, leadership, and client-facing skills.
• Strong written and presentation skills with the ability to clearly communicate complex SIEM and SOC concepts to technical and executive audiences.
• Possess a high standard of integrity and confidentiality.
  • #LI-GN1


Salary Range Description
$134,600.00 - $184,500.00 Annual

The Hiring Range provided for this role is informed by (but not limited to) various factors including responsibilities of the position, work experience, education/training, internal peer equity, geography, as well as other market influences when extending an offer. The disclosed range has not been adjusted for these factors. This role may also be eligible to participate in a variable incentive-based bonus plan. Optiv offers a comprehensive compensation and benefits package, of which salary is a component.

Job Application Window

This position accepts applicants for a minimum of 4 business days after the job posting date and will remain available until an applicant has been selected for the position.

About Optiv

Optiv Security is a security solutions integrator that enables clients to reduce risk by taking a strategic approach to cybersecurity. Optiv helps clients plan, build and run successful cybersecurity programs that achieve business objectives through its depth and breadth of cybersecurity offerings, extensive capabilities and proven expertise in cybersecurity, integration and cyber operational services. Optiv maintains premium partnerships with more than 350 of the leading security technology manufacturers. Optiv has offices in the United States, Canada and Europe. Optiv was founded in 2015 as a result of the merger between Accuvant and FishNet Security. Optiv is headquartered in Denver, Colorado.
Learn more about Optiv
Size
2,000 employees
Industry
Founded
2015

Similar Jobs

More Jobs at Optiv

More Information Technology Jobs

Find similar Principal Consultant - SIEM | Remote, USA jobs: