×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

SIEM Infrastructure and Detection Engineer

Job in Portland, Multnomah County, Oregon, 97204, USA
Listing for: ECS
Full Time position
Listed on 2025-12-31
Job specializations:
  • Engineering
    Cybersecurity, Systems Engineer
  • IT/Tech
    Cybersecurity, Systems Engineer
Job Description & How to Apply Below

Job Description

ECS is seeking a SIEM Infrastructure and Detection Engineer to work in our Portland, Oregon office. The SIEM Infrastructure and Detection Engineer supports a federal energy sector cybersecurity program by engineering, maintaining, and optimizing the SIEM infrastructure and security monitoring platform, including detections, visualizations, dashboards, and reporting. This role ensures the reliability and effectiveness of SIEM and related monitoring tools to meet Information Security Continuous Monitoring (ISCM) and Department of Homeland Security (DHS) Continuous Diagnostics and Mitigation (CDM) requirements.

The engineer works directly with security analysts, system owners, and DHS CDM teams to ensure continuous visibility, timely detection, and compliance with federal cybersecurity standards.

Core Capabilities
  • Lead the design, deployment, and monitoring of enterprise SIEM platforms (e.g., Splunk, Elastic Stack)
  • Architect, implement, and maintain integrations with enterprise systems, cloud environments, and security tools (e.g., EDR, IDS/IPS, firewalls, TIP)
  • Develop and optimize dashboards, alerts, and data pipelines
  • Automate platform tasks and SIEM processes using scripting (e.g., Python, Power Shell, bash)
  • Monitor and tune platform performance to ensure high availability and accuracy of security data
  • Troubleshoot and resolve platform-related issues in coordination with analysts and engineers
  • Collaborate with federal stakeholders to align SIEM capabilities with ISCM and CDM reporting requirements
  • Maintain documentation of platform configurations, standard operating procedures, and system baselines
Requirements
  • U.S. Citizenship with ability to obtain and maintain a DOE “L” clearance
  • Hands‑on experience with at least one enterprise SIEM platform (Splunk, Elastic, QRadar, or Log Rhythm)
  • Experience integrating SIEM with enterprise IT systems, cloud platforms, or endpoint detection tools
  • Experience onboarding diverse log sources (network, endpoint, cloud, SaaS) and tuning correlation rules
  • Proficiency in scripting (Python, Power Shell, or Bash) for automation and data integration
  • A Bachelor’s or equivalent and minimum 5 years of experience in cybersecurity engineering and security monitoring, including 3+ years dedicated to SIEM engineering

ECS

#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search