×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Senior Cyber Security Engineer - SIEM and Automation

Job in Houston, Harris County, Texas, 77246, USA
Listing for: Corebridge Financial
Full Time position
Listed on 2026-05-19
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 168000 - 195000 USD Yearly USD 168000.00 195000.00 YEAR
Job Description & How to Apply Below

About the Role

We are seeking a highly skilled Senior Cyber Security Engineer – SIEM and Automation to lead and enhance our detection engineering capabilities. This role is responsible for developing high‑fidelity use cases, optimizing logging strategies, integrating security tools, and tuning alerts to improve signal‑to‑noise ratio. You will work closely with Security Operations, Threat Intelligence, and Engineering teams to ensure our SIEM platform delivers actionable insights and supports rapid incident detection and response.

Responsibilities
  • Use Case Development
    • Design, develop, and maintain SIEM detection use cases aligned with MITRE ATT&CK and threat intelligence
    • Translate threat scenarios into actionable detection logic and correlation rules
    • Continuously improve detection coverage through gap analysis and adversary simulation insights
  • Logging & Data Analysis
    • Define and implement logging requirements across cloud, endpoint, network, and application layers
    • Analyze log sources to ensure data quality, normalization, and completeness
    • Identify gaps in telemetry and recommend improvements to enhance visibility
  • Tool Integration & Data Onboarding
    • Integrate new data sources into the SIEM (e.g., EDR, IAM, firewall, SaaS platforms)
    • Work with engineering teams to onboard logs using APIs, agents, and log pipelines
    • Ensure proper parsing, enrichment, and normalization of ingested data
  • Alert Tuning & Optimization
    • Reduce false positives through continuous alert tuning and threshold optimization
    • Implement risk‑based alerting and prioritization strategies
    • Collaborate with SOC analysts to refine detection logic based on incident feedback
  • SIEM Platform Engineering
    • Maintain and optimize SIEM performance, scalability, and cost efficiency
    • Develop dashboards, reports, and visualizations for operational and leadership insights
    • Support automation and orchestration efforts with SOAR integrations where applicable
  • Collaboration & Continuous Improvement
    • Partner with Threat Intelligence to operationalize indicators and emerging threats
    • Support incident response investigations with log analysis and detection enhancements
    • Stay current with evolving attack techniques and detection methodologies
Skills and Qualifications
  • Technical Requirements
    • Bachelor’s degree in Cybersecurity, Computer Science, or related field (or equivalent experience)
    • 3–7+ years of experience in SIEM engineering, detection engineering, or security operations
    • Hands‑on experience with SIEM platforms (e.g., Splunk, Microsoft Sentinel, QRadar, Elastic)
    • Strong understanding of log sources (Windows, Linux, cloud platforms, network devices)
    • Experience with query languages (e.g., SPL, KQL, Lucene, SQL)
    • Knowledge of MITRE ATT&CK framework and adversary tactics/techniques
    • Experience onboarding and parsing diverse data sources
  • Preferred Qualifications
    • Experience with SOAR platforms and security automation
    • Familiarity with cloud environments (AWS, Azure, GCP) and their native logging tools
    • Scripting or programming skills (Python, Power Shell, etc.)
    • Experience with detection‑as‑code and version control practices
    • Security certifications (e.g., GCIA, GCIH, CISSP, Splunk Certified, Microsoft SC‑200)
  • Skills & Competencies
    • Strong analytical and problem‑solving skills
    • Ability to balance detection fidelity with operational efficiency
    • Effective communication and collaboration across technical teams
    • Continuous learning mindset with a focus on threat‑driven defense
Compensation

The anticipated salary range for this position is $168,000 to $195,000 at the commencement of employment for the Jersey City, NJ and Woodland Hills, CA area. The actual compensation offered will ultimately be dependent on multiple factors, which may include the candidate’s geographic location, skills, experience and other qualifications.

In addition, the position is eligible for a discretionary bonus in accordance with the terms of the applicable incentive plan.

Benefits
  • Health and Wellness:
    We offer a range of medical, dental and vision insurance plans, as well as mental health support and wellness initiatives to promote overall well‑being.
  • Retirement Savings:
    Our competitive 401(k) Plan offers a generous dollar‑for‑dollar company matching…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search