Digital & IT Technical Spec - Cyber Security - SIEM Administrator

Parker Hannifin is seeking a SIEM Engineer to strengthen our enterprise cybersecurity operations through security monitoring, detection engineering, incident investigation, and threat hunting. This role is responsible for advancing the effectiveness of our Security Information and Event Management (SIEM) capabilities, improving detection coverage, and supporting timely, data-driven response to cyber threats across a global environment. The ideal candidate combines hands‑on experience with SIEM platforms, log analysis, and security detection content development with a strong understanding of incident response workflows and adversary tactics.

The SIEM Engineer will design, implement, tune, and maintain SIEM content and supporting integrations to improve visibility into security events across the enterprise. This position plays a key role in investigating security incidents, proactively hunting for threats, and developing high‑fidelity detections aligned to evolving threat activity.

• Administer and optimize SIEM platforms to support enterprise‑scale security monitoring and alerting.
• Design, develop, and maintain detection rules, correlation logic, dashboards, and use cases aligned to current threat trends and business risk.
• Integrate log sources from endpoints, servers, network devices, cloud platforms, identity systems, and security tools to improve visibility and telemetry coverage.
• Tune alerts and detections to reduce false positives, improve fidelity, and support efficient analyst triage.
• Investigate security events and incidents by analyzing logs, alerts, endpoint telemetry, and related evidence to determine scope, impact, and root cause.
• Conduct proactive threat hunting using SIEM data, threat intelligence, behavioral analytics, and known attacker techniques.
• Map detections and hunting content to frameworks such as MITRE ATT&CK to improve detection maturity and coverage.
• Support incident response activities by providing technical analysis, log review, and investigative findings during active incidents.
• Develop and maintain playbooks, runbooks, and documentation for SIEM operations, detection engineering, and investigation workflows.
• Collaborate with cross‑functional teams to improve logging standards, telemetry quality, and response readiness across on‑premises and cloud environments.
• Track and report on detection effectiveness through metrics such as alert quality, coverage, tuning outcomes, and time‑to‑detect.
• Stay current on emerging threats, adversary techniques, and security technologies to continuously enhance monitoring and detection capabilities.

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related discipline; or equivalent practical experience.
• 7+ years of experience in cybersecurity, with direct experience in SIEM engineering, security operations, or detection engineering.
• Hands‑on experience with one or more SIEM platforms such as Microsoft Sentinel, Splunk, QRadar, Elastic, or similar.
• Experience creating and tuning detection rules, queries, correlation searches, and dashboards.
• Strong understanding of log management, security event analysis, and investigation techniques.
• Experience with incident investigation and support for security incident response activities.
• Working knowledge of threat hunting methodologies and attacker behaviors across enterprise environments.
• Familiarity with Windows, Linux, Active Directory, network security concepts, cloud platforms, and endpoint security telemetry.
• Proficiency in query or scripting languages such as KQL, SPL, SQL, Python, or Power Shell.
• Understanding of cybersecurity frameworks and concepts including MITRE ATT&CK, IOC/IOA analysis, and defense‑in‑depth.
• Strong analytical, documentation, and communication skills, with the ability to translate technical findings into actionable outcomes.
• CompTIA Security+ or other related Cybersecurity certifications.

(“Minority / Female / Disability / Veteran / VEVRAA Federal Contractor”)

If you would like more information about Equal Employment Opportunity as an applicant under the law, please go to Employees & Job Applicants | U.S. Equal Employment Opportunity Commission