×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Senior Security Engineer - Elastic SIEM and Detection Engineering

Job in Burlington, Middlesex County, Massachusetts, 01805, USA
Listing for: Acronis, Inc.
Full Time position
Listed on 2026-06-02
Job specializations:
  • Engineering
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 123000 - 180000 USD Yearly USD 123000.00 180000.00 YEAR
Job Description & How to Apply Below

Acronis is a global leader in cyber protection, delivering AI-powered protection for productive MSPs in a single, natively integrated platform that unifies operations management, cybersecurity, and data protection. Driven by our mission to protect, manage and automate every workload that businesses and lives depend on, we’ve built the industry’s only all-in-one solution.

What You’ll Do
  • Elastic SIEM & Platform Engineering
    • Own and optimize the Elastic Security platform (Elasticsearch, Kibana, Fleet, Logstash, Elastic Agents)
    • Design and maintain ingestion pipelines for cloud, endpoint, network, and application telemetry
    • Improve telemetry quality, data retention, performance, and investigation workflows
    • Integrate SIEM workflows with SOAR and automation tooling
  • Detection Engineering & Detection-as-Code
    • Build and maintain a Detection-as-Code pipeline using Git-based workflows and CI/CD automation
    • Develop, test, tune, and maintain high-fidelity detections using Elastic Security, EQL, and KQL
    • Reduce alert noise through tuning, enrichment, suppression, and exception handling
    • Map detections to MITRE ATT&CK and help drive detection coverage strategy
    • Track detection quality metrics including alert fidelity, false positive rates, and coverage gaps
  • Incident Response Support
    • Assist with complex alert escalations and perform initial incident scoping
    • Execute initial containment actions when necessary (endpoint isolation, IP/domain blocking, account suspension)
    • Participate in a low-frequency on-call rotation for critical incidents
    • Translate incident learnings into improved detections and telemetry coverage
  • Collaboration & Automation
    • Partner with infrastructure, Dev Sec Ops , and cloud teams to improve logging and visibility
    • Build automation and tooling using Python and/or Power Shell
    • Support purple team exercises and adversary simulations
Who We’re Looking For
  • 5+ years of cybersecurity engineering experience
  • 3+ years focused on SIEM engineering, detection engineering, or security analytics
  • Strong hands‑on experience with Elastic Security and the Elastic Stack
  • Experience building or maintaining Detection-as-Code workflows using Git and CI/CD pipelines
  • Strong understanding of detection tuning, alert fidelity, and operational detection quality
  • Ability to independently investigate complex alerts and produce actionable findings
  • Technical

    Experience:

    Elastic Security, Kibana, Fleet, Elastic Agents, EQL/KQL
  • Detection engineering and MITRE ATT&CK mapping
  • Jenkins, Bitbucket Pipelines, Git Hub Actions, or similar CI/CD tooling
  • Python and/or Power Shell scripting
  • AWS Cloud Trail, VPC Flow Logs, Azure Monitor, or similar telemetry sources
  • TCP/IP, DNS, HTTP/S, and common attack patterns
  • Threat intelligence enrichment and operationalization
  • Nice to have:
    • SOAR playbook development and automated response workflows
    • Sigma rule development
    • Elastic detection‑rules ecosystem familiarity
    • Terraform or Ansible experience
    • Previous SOC or Incident Response background
What Success Looks Like

30 Days:
Validate telemetry sources and establish initial detection coverage baseline
90 Days:
Operational Detection-as-Code pipeline with initial custom detections deployed
180 Days:
Reduced alert noise, improved coverage visibility, and stabilized SIEM operations

Compensation & Benefits

The US pay range for this position is $123,000–$180,000. This range reflects the minimum and maximum total target annual compensation for this role across all U.S. locations. The actual compensation offered at the start of employment is determined based on factors including, but not limited to, experience level, knowledge, skills, and geographic location. In addition to competitive compensation, this role includes a comprehensive benefits package featuring medical, dental, and vision coverage, flexible spending accounts (FSA), disability and life insurance, a 401(k) retirement plan with company match, and a generous vacation policy.

Equal

Employment Opportunity

Acronis is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, marital status, national origin, physical or mental disability, medical condition, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, gender identity or expression, or any other characteristic protected by applicable laws, regulations and ordinances.

#J-18808-Ljbffr
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search