ECS

Senior SIEM Engineer

ECS$130K — $145K *
Washington, DC 20011In-Person
Aerospace & Defense
5 - 7 years of experience
Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • Active Top Secret clearance with SCI eligibility; TS/SCI preferred.
  • 6+ years of SIEM engineering, cybersecurity engineering, SOC support, detection engineering, or security monitoring experience.
  • Experience with SIEM tools such as Splunk, Elastic, QRadar, or equivalent.
  • Knowledge of log ingestion, correlation rules, dashboards, alerting, incident response, vulnerability management, and compliance reporting.
  • Ability to coordinate and troubleshoot across technical teams.
  • Strong documentation, analytical, and communication skills.

Responsibilities

  • Configure and maintain SIEM and security analytics platforms.
  • Onboard log sources and troubleshoot data ingestion to enhance log coverage.
  • Develop correlation rules, alerts, dashboards, and detection content.
  • Support incident triage, security monitoring, and compliance reporting.
  • Tune alerts to reduce false positives and increase alert quality.
  • Collaborate with cybersecurity, infrastructure, and operations teams.
  • Mentor cybersecurity analysts and develop documentation and playbooks.

Benefits

  • Opportunities for professional growth in the National Security Business Unit.
  • Engagement with cutting-edge cybersecurity technologies and practices.
  • Mentorship opportunities within a collaborative team environment.
  • Contributions to critical national security missions in law enforcement and defense.
Full Job Description
Everforth ECS is seeking a Senior SIEM Engineer to work in our Washington, DC office. Please Note: This position is contingent upon contract award.

We are seeking a cleared Senior SIEM Engineer to support security monitoring, detection engineering, log management, alerting, reporting, and incident response capabilities for classified and sensitive law enforcement, national security, and criminal justice environments within the National Security Business Unit. The Senior SIEM Engineer will serve as a technical lead for SIEM operations, log onboarding, detection content development, dashboarding, alert tuning, incident triage, continuous monitoring, compliance reporting, and security analytics modernization. The Senior SIEM Engineer will support security monitoring, detection engineering, log management, alerting, reporting, and incident response capabilities for classified and sensitive environments serving law enforcement, national security, and criminal justice missions. This role focuses on improving visibility, analytics, and operational security across enterprise systems, applications, endpoints, networks, and security tools.

The Senior SIEM Engineer will also contribute to National Security Business Unit growth by identifying opportunities to improve threat visibility, expand log coverage, automate security workflows, enhance insider threat support, improve compliance reporting, and develop new cybersecurity analytics capabilities.

Responsibilities

  • Configure, operate, tune, and maintain SIEM and security analytics platforms.
  • Onboard log sources, troubleshoot data ingestion, and improve log coverage across systems, applications, networks, and endpoints.
  • Develop correlation rules, alerts, dashboards, reports, and detection content.
  • Support incident triage, investigation, security monitoring, compliance reporting, and continuous monitoring.
  • Tune detections, reduce false positives, and improve alert quality.
  • Coordinate with cybersecurity, infrastructure, application, network, and operations teams.
  • Support insider threat, audit, vulnerability, and enterprise security initiatives.
  • Mentor cybersecurity analysts, system administrators, ISSOs, incident responders, and infrastructure teams.
  • Develop reusable playbooks, detection documentation, reporting templates, and knowledge-transfer materials.
  • Identify opportunities for automation, expanded analytics, improved visibility, and new cybersecurity services.


Salary Range: $130,000 - $145,000

General Description of Benefits

  • Active Top Secret clearance with SCI eligibility; TS/SCI preferred.
  • 6+ years of SIEM engineering, cybersecurity engineering, SOC support, detection engineering, or security monitoring experience.
  • Experience with SIEM tools such as Splunk, Elastic, QRadar, or equivalent platforms.
  • Knowledge of log ingestion, correlation rules, dashboards, alerting, incident response, vulnerability management, and compliance reporting.
  • Ability to troubleshoot data ingestion and coordinate across technical teams.
  • Strong documentation, analytical, and communication skills.

About ECS

ECS is a leading provider of digital solutions and services to the federal government. The company was founded in 2001 by Roy Kapani and has since grown to become a trusted partner to a wide range of government agencies. ECS offers a broad range of services, including cloud computing, cybersecurity, and artificial intelligence. The company has been recognized for its innovative solutions and has won numerous awards, including the AWS Public Sector Partner of the Year award.
Learn more about ECS
Size
2,000 employees
Industry
Information Technology
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at ECS

More Aerospace & Defense Jobs

Find similar Senior SIEM Engineer jobs:

NationwideWashington, DC