Today
Dept of Homeland Security
Unspecified
Unspecified
IT - Security
Remote/Hybrid• (Off-Site/Hybrid)
Job Description
ECS is seeking a SIEM Engineer III to work remotely .
Overview
The SIEM Engineer III provides senior-level engineering support for enterprise monitoring platforms within the federal energy sector. This role focuses on designing, deploying, and optimizing SIEM solutions to meet Information Security Continuous Monitoring (ISCM) and DHS Continuous Diagnostics and Mitigation (CDM) requirements. The position supports security operations by ensuring the platform delivers reliable log ingestion, accurate detections, and effective compliance reporting.
Core Capabilities
Salary Range: $125,000 - $152,000
Required Skills
#ECS1
ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.
ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3500+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.
ECS is seeking a SIEM Engineer III to work remotely .
Overview
The SIEM Engineer III provides senior-level engineering support for enterprise monitoring platforms within the federal energy sector. This role focuses on designing, deploying, and optimizing SIEM solutions to meet Information Security Continuous Monitoring (ISCM) and DHS Continuous Diagnostics and Mitigation (CDM) requirements. The position supports security operations by ensuring the platform delivers reliable log ingestion, accurate detections, and effective compliance reporting.
Core Capabilities
- Lead the design, deployment, and tuning of enterprise SIEM platforms (Splunk, Elastic, or similar).
- Architect and maintain integrations with enterprise systems, cloud platforms, and security tools (EDR, IDS/IPS, firewalls, threat intel feeds).
- Conduct advanced system health checks, performance tuning, and capacity planning.
- Automate SIEM processes using scripting (Python, PowerShell, Bash).
- Support SOC analysts by developing detections, dashboards, and use cases.
- Ensure platform documentation, configuration baselines, and procedures meet compliance standards.
- Collaborate with federal stakeholders to align SIEM capabilities with ISCM/CDM reporting requirements.
Salary Range: $125,000 - $152,000
Required Skills
- U.S. Citizenship
- Ability to obtain and maintain a DOE "L" clearance or DoD Secret clearance with reciprocity
- Minimum 5 years of experience in cybersecurity engineering, including 3+ years dedicated to SIEM engineering
- Hands-on expertise with at least one enterprise SIEM (Splunk, Elastic, QRadar , or LogRhythm)
- Experience onboarding diverse log sources (network, endpoint, cloud, SaaS) and tuning correlation rules
- Strong scripting skills (Python, PowerShell, Bash) for automation and integration
- Familiarity with federal cybersecurity standards (FISMA, NIST 800-53, ISCM, CDM)
- Advanced Splunk engineering experience (indexer/search head clustering, CIM compliance, custom TAs)
- Experience with Elastic stack (Elasticsearch, Kibana, ECE, ECK)
- Familiarity with SOAR integration for automated incident response
- Experience with configuration management tools (Ansible, Terraform, Puppet, or Chef)
- Exposure to OT/ICS environments and critical infrastructure cybersecurity
- Certifications such as Splunk Certified Architect, Elastic Certified Engineer, CISSP, or GCIA'
#ECS1
ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.
ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3500+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.
group id: 10112231A
