Senior SIEM Developer​/Engineer - Northeast region; Remote

Senior SIEM Developer/Engineer - Northeast region (Remote)

Remote

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk.

We are seeking an experienced Senior SIEM Developer/Engineer to lead the design, implementation, and optimization of SIEM systems and observability pipelines across modern toolsets. Preference to candidates located on the U.S. East Coast.

• Architect, implement, and maintain SIEM solutions focused on modern platforms including Splunk, Microsoft Sentinel, Elastic, Google Sec Ops/Chronicle, Crowd Strike NG-SIEM/Log Scale, Sentinel One SIEM.
• Design and manage log ingestion pipelines using Cribl Stream, Edge, or Search.
• Optimize data routing, enrichment, and filtering to improve SIEM efficiency and cost control.
• Collaborate with cybersecurity, Dev Ops, and cloud infrastructure teams to integrate log sources and telemetry data.
• Develop custom parsers, dashboards, correlation rules, and alerting logic for security analytics and threat detection.
• Maintain and enhance system reliability, scalability, and performance of logging infrastructure.
• Provide expertise and guidance on log normalization, storage strategy, and data retention policies.
• Lead incident response investigations and assist with root cause analysis leveraging SIEM insights.
• Mentor junior engineers and contribute to strategic security monitoring initiatives.

• 5+ years of experience in security engineering with a primary focus on SIEM platforms.
• Hands‑on experience with at least one SIEM platform:
  Splunk, Microsoft Sentinel, Elastic, Google Sec Ops/Chronicle, Crowd Strike NG‑SIEM/Log Scale, Sentinel One SIEM.
• 2+ years of experience with Cribl or similar observability pipeline tools (e.g., Logstash, Fluentd, Kafka).
• Strong knowledge of log formats, data normalization, and event correlation.
• Familiarity with detection engineering, threat modeling, and MITRE ATT&CK framework.
• Proficiency with scripting (Python, Power Shell, Bash) and regular expressions.
• Deep understanding of logging from cloud (AWS, Azure, GCP) and on‑prem environments.

Bachelor’s degree in a relevant discipline or equivalent professional experience.

• Group Medical Insurance options:
  Zero Deductible PPO Plan with GuidePoint covering up to 90% for employees and 70% for family plans.
• Group Dental Insurance: 100% employee premium coverage and 75% family plans.
• 12 corporate holidays and a Flexible Time Off (FTO) program.
• Healthy mobile phone and home internet allowance.
• Eligibility for retirement plan after 2 months at open enrollment.

As set forth in GuidePoint Security’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.