Akima

SIEM Administrator / Security Monitoring Engineer

Akima$90K — $120K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 5-7 years of experience in SIEM administration and security monitoring
  • Proficiency in Elastic Stack and Splunk
  • Experience in managing security operations within SOC environments
  • Familiarity with threat detection methodologies and frameworks
  • Professional certifications (e.g., Splunk Certified Administrator, Elastic Certified Engineer, CISSP)
  • Strong analytical problem-solving abilities
  • Excellent written documentation and process development skills

Responsibilities

  • Design, deploy, and manage enterprise SIEM platforms including configuration for scalability and security
  • Handle operations in isolated networks and ensure compliance with security protocols
  • Architect and maintain log ingestion pipelines integrating multiple data sources
  • Develop detection logic and alerting workflows to maximize threat detection accuracy
  • Monitor platform performance and optimize for growth and efficiency
  • Create comprehensive dashboards and visualizations to support SOC operations
  • Maintain thorough documentation of systems and processes for audit and compliance purposes

Benefits

  • Work in a hybrid environment offering flexibility
  • Collaborate with a team of skilled professionals in the security field
  • Opportunity for continuous improvement and professional development
  • Access to advanced technologies and methodologies in cybersecurity
  • Engagement in meaningful work within government security frameworks
Full Job Description

Tuvli is seeking a highly motivated, self-directed and experienced individual to fill the role of a SIEM Administrator/Security Monitoring Engineer for our existing government client in the Alexandria, VA.  To join our team of outstanding professionals, apply today!

 

The SIEM Administrator / Security Monitoring Engineer is responsible for the deployment, configuration, administration, and optimization of enterprise Security Information and Event Management (SIEM) and security monitoring platforms in secure and air-gapped environments.

This role focuses on designing and maintaining security monitoring solutions, with primary experience in Elastic Stack and Splunk, while supporting other security analytics, log management, and monitoring technologies as required.

 

The position requires expertise in both platform engineering and operational configuration, including backend system administration, data ingestion pipelines, and front-end configuration such as dashboards, alerts, visualizations, and reporting used by cybersecurity analysts and Security Operations Centers (SOC).

  • Design, deploy, and administer enterprise SIEM platforms (e.g., Elastic Stack, Splunk), including scalable architecture, clustering, high availability, secure configuration (RBAC, authentication), and full lifecycle management in both connected and air-gapped environments.
  • Manage SIEM operations in isolated networks by handling offline installations, dependency management, secure update ingestion (patches, plugins, threat intelligence), and enforcing system hardening and compliance requirements.
  • Architect and maintain enterprise log ingestion pipelines by integrating diverse data sources (OS, network, security, identity systems), and implementing parsing, normalization, enrichment, and throughput optimization.
  • Develop and tune detection logic, correlation rules, and alerting workflows aligned to frameworks such as MITRE ATT&CK, improving detection fidelity and reducing false positives while supporting threat hunting and investigations.
  • Monitor and optimize platform performance through health monitoring, query and indexing optimization, storage and retention strategies, and capacity planning for scalable growth.
  • Create dashboards, visualizations, and automated reporting to support SOC operations and leadership, while collaborating with analysts to enhance workflows and integrating new tools and data sources.
  • Maintain comprehensive documentation, including system architecture, ingestion processes, SOPs, and audit/compliance artifacts.
  • Experience supporting a Security Operations Center (SOC) environment.
  • Experience with multiple SIEM or security analytics platforms preferred.
  • Familiarity with threat detection methodologies and adversary frameworks.
  • Experience with infrastructure automation or configuration management preferred.
  • Professional certifications such as:
    • Splunk Certified Administrator.
    • Elastic Certified Engineer.
    • CISSP or equivalent cybersecurity certification.
  • Advanced troubleshooting and analytical problem solving.
  • Strong written documentation and process development.
  • Collaboration with cybersecurity operations and infrastructure teams.
  • Continuous improvement of enterprise security monitoring capabilities.
  • Clearance:  Minimum DoD Interim Secret Clearance is required.
  • Candidate must reside within 50 miles of the Nation Capital Region (NCR)/ Washington DC.
Job ID2026-21699 Work TypeHybrid

Similar Jobs

More Jobs at Akima

  • AIS
    .NET & React Full Stack Developer
    $100K — $150K *
    Washington, DC 20011 (District Of Columbia County)
    Information Technology
    In-Person
  • AIS
    Forensic Accountant
    $119K — $179K *
    Washington, DC 20011 (District Of Columbia County)
    Legal & Accounting
    Hybrid
  • AIS
    Customer Engagement Manager
    $88K — $134K *
    Alexandria, VA 22304 (Alexandria City County)
    Aerospace & Defense
    Hybrid
  • Bioacoustics Scientist
    $75K — $95K *
    Miami, FL 33186 (Miami-Dade County)
    Education, Government & Non-Profit
    In-Person
  • Bioacoustics Scientist
    $70K — $95K *
    Key Biscayne, FL 33149 (Miami-Dade County)
    Education, Government & Non-Profit
    In-Person

More Information Technology Jobs

Find similar SIEM Administrator / Security Monitoring Engineer jobs: