NXTG SIEM Engineer
Listed on 2026-07-01
-
IT/Tech
Cybersecurity
NXTG SIEM Engineer
We are seeking a Security Engineer to design, build, and operate enterprise-scale security telemetry, observability, and analytics platforms within a cloud-native environment. This is a hands-on engineering role focused on building and optimizing telemetry pipelines, enabling enterprise logging, and supporting detection engineering. The role is a key part of a transition from Splunk to Coralogix to modernize observability and SIEM capabilities.
Key Responsibilities
- Administer and optimize SIEM, observability, telemetry, and security analytics platforms.
- Design, build, and maintain enterprise telemetry pipelines and logging infrastructure.
- Lead onboarding, normalization, and enrichment of log and telemetry sources.
- Develop and tune detections, alerts, dashboards, and threat hunting content.
- Support incident response, investigations, and security operations workflows.
- Integrate observability platforms with AWS cloud services and other enterprise systems.
- Implement access controls, auditing, retention, and data governance requirements.
- Collaborate with engineering and operations teams to improve security visibility and detection coverage.
- Support and guide the Splunk to Coralogix transition.
- Engage in client-facing discussions, translating technical solutions into business value.
Required Qualifications
Experience:
8+ years of experience in cybersecurity engineering, SIEM/observability platforms, and security analytics or enterprise logging. Hands-on experience with one or more platforms such as Coralogix, Datadog, Dynatrace, New Relic, Sumo Logic, or Splunk is required.
Technical
Skills:
Strong experience designing and operating telemetry pipelines, enterprise logging architectures, and Open Telemetry-based frameworks. Candidates must have experience developing security detections, alerting, dashboards, and analytics use cases. Strong AWS experience, including networking and cloud-native architectures, is necessary, along with proficiency in scripting with Python, Bash, or similar languages.
Preferred Qualifications
- Experience supporting SIEM or observability transformations.
- Familiarity with UEBA, behavioral analytics, or threat hunting programs.
- Experience integrating with Service Now (ITSM), SOAR platforms, or security tools like Trellix or Palo Alto NGFW.
- Experience in regulated environments such as Federal or Financial sectors.
- Background in driving deployment, integration, or platform enhancement initiatives.
Additional Success Factors
- Strong client-facing communication skills to explain technical solutions to non-technical stakeholders.
- Demonstrated project management capabilities, including tracking deliverables and timelines.
- Ability to drive platform adoption and operational maturity across teams.
- Strong analytical, troubleshooting, and problem-solving skills.
Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including Clearly Rateds Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).