SIEM Architect​/Engineer

“I can be myself at work.”

We value your talents, traditions, and uniqueness—and we’re committed to fostering a strong sense of belonging in a respectful workplace.

We intentionally seek diverse perspectives, experiences, and backgrounds, investing in a culture designed to celebrate differences. We believe that belonging leads to better outcomes and a stronger community of associates united by our mission.

At Capital, we live our core values every day:
Integrity, Client Focus, Diverse Perspectives, Long‑Term Thinking, and Community.

Your performance will be reviewed annually, and your compensation will be designed to motivate and reward the value that you provide. You’ll receive a competitive salary, bonuses and benefits. Your company‑funded retirement contribution will factor in salary and variable pay, including bonuses.

You bring unique goals and interests to your job and your life. Whether you’re raising a family, you’re passionate about where you volunteer, or you want to explore different career paths, we’ll give you the resources that can set you up for success.

• Enjoy generous time‑away and health benefits from day one, with the opportunity for flexible work options.
• Receive 2‑for‑1 matching gifts for your charitable contributions and the opportunity to secure annual grants for the organizations you love.
• Access on‑demand professional development resources that allow you to hone existing skills and learn new ones.

We are seeking a highly skilled and hands‑on SIEM Architect / Engineer to lead the design, implementation, and optimization of modern SIEM solutions for our enterprise. The ideal candidate requires deep technical expertise in security data engineering, log management, and threat detection, as well as a strong consultative approach to understanding and solving complex security challenges.

• Architect, build, and implement scalable and resilient SIEM solutions tailored to customer requirements.
• Leverage modern technologies such as Splunk, Cribl, Snowflake, Databricks and AWS‑native services to build advanced detection and investigation capabilities.
• Analyze and normalize diverse security log sources to ensure comprehensive visibility and actionable insights.
• Collaborate with customers to understand their security operations needs and develop tailored SIEM strategies and roadmaps.
• Enable customers to fine‑tune detection logic, correlation rules, and alerting mechanisms for maximum effectiveness and minimal noise.
• Integrate platforms with broader security ecosystems including SOAR, EDR, threat intelligence, and cloud‑native tools.
• Build and maintain system health checks, high availability configurations, and log pipeline reliability.
• Stay current with emerging threats, SIEM technologies, and industry trends to continuously evolve detection and response strategies.
• Provide expert‑level troubleshooting and resolution support for complex SIEM‑related issues and performance bottlenecks.

• You have 5–7 years of experience architecting, deploying, and optimizing SIEM platforms in enterprise environments.
• You’ve worked hands‑on with modern SIEM tools like Cribl, Splunk, AWS, Snowflake, and Databricks, and know how to tailor them to complex environments.
• You understand security telemetry deeply—logs from firewalls, endpoints, cloud services, identity providers, and applications are second nature to you.
• You automate and integrate with ease using Python, Bash, and Terraform, streamlining workflows and boosting efficiency.
• You engineer log pipelines, normalize and enrich data, and ensure it’s ready for analysis and detection.
• You communicate clearly and consult effectively, translating technical requirements into business outcomes that matter.
• You’re familiar with MITRE ATTACK, and skilled in detection engineering and threat hunting methodologies.
• You have a strong background in cloud security and Dev Sec Ops , and know how to embed security into every stage of development.

Apply now to…