The final salary or hourly wage, as applicable, paid to each candidate/applicant for this position is ultimately dependent on a variety of factors, including, but not limited to, the candidate’s/applicant’s qualifications, skills, and level of experience as well as the geographical location of the position.

Applicants must be legally authorized to work in the United States. Visa sponsorship is not available.

Our client is seeking a Security Engineer (SIEM/SOAR) in Dallas, TX/Hybrid.

Role Description

• Acting as the subject matter expert and primary escalation point for SIEM issues, contributing to root-cause analysis, troubleshooting, and service restoration procedures.
• Contributing to enterprise-wide cybersecurity strategy and collaborating with stakeholders.
• Reporting security gaps and providing recommendations.
• Offering strategic direction on data security, incident response, emerging technologies, and industry best practices.
• Utilizing intermediate Linux knowledge, including command-line interface (CLI) and scripting (Python and/or PowerShell).
• Intermediate understanding of cloud environments (e.g., AWS, Azure, Google Cloud) and ingesting logs from these environments.
• Supporting active SIEM and investigation efforts as needed, including after-hours incident response.
• Collaborating with cybersecurity engineers, governance, and IT teams to assist in obtaining data analytics or data protection reports and correlations.
• Developing effective correlation rules and performing ongoing development for additional use cases.
• Tuning SIEM components to ensure maximum reliability and reduce false positives.
• Integrating SIEM with a wide variety of data sources (e.g., network devices, servers, applications) and industry-leading commercial security tools (e.g., Splunk, QRadar, ArcSight).
• Performing maintenance and optimization of existing SIEM deployments.
• Promptly responding to requests for assistance from SIEM users and others.
• Adhering to relevant policies, procedures, standards, and security best practices.
• Resolving problems independently and understanding escalation procedures.
• Responding promptly to all requests for access or other security exceptions requiring approval or involvement from the information security team.
• Generating custom dashboards, metrics, and/or reports as directed by Cybersecurity leadership.
• Assisting with investigations and/or incidents as requested (including after hours on an as-needed basis).
• Representing the organization on external & internal risk and information security groups, as necessary.
• Creating formal documentation such as reports, training material, slide decks, and architecture diagrams.

Skills & Requirements

Experience and Education:
• 4+ years in Information Technology, 3+ years in Cybersecurity specializing in SIEM design and implementation.
• BS in Computer Science or equivalent field preferred. Related job experience may substitute.
• Relevant security certifications (e.g., GIAC-GCED, GCDA, GDSA, GMON) preferred.

Skills and Abilities:
• Expertise in investigating incidents, leveraging, and managing an SIEM platform.
• Working knowledge of MITRE ATT&CK and other common Tactics, Techniques, and Procedures (TTPs).
• Working knowledge of CIS Top 20, NIST, or other security frameworks.
• Ability to interact and negotiate across various departments.
• Excellent management and communication skills.
• Experience with security incidents and forensic investigations.
• Knowledge of and experience with risk management and mitigation.

Benefits/Other Compensation:

Health, Dental, Vision and 401K matching.

Why Hays?

You will be working with a professional recruiter who has intimate knowledge of the industry and market trends. Your Hays recruiter will lead you through a thorough screening process in order to understand your skills, experience, needs, and drivers. You will also get support on resume writing, interview tips, and career planning, so when there’s a position you really want, you’re fully prepared to get it.

Nervous about an upcoming interview? Unsure how to write a new resume?

Visit the Hays Career Advice section to learn top tips to help you stand out from the crowd when job hunting.

Hays is committed to building a thriving culture of diversity that embraces people with different backgrounds, perspectives, and experiences. We believe that the more inclusive we are, the better we serve our candidates, clients, and employees. We are an equal employment opportunity employer, and we comply with all applicable laws prohibiting discrimination based on race, color, creed, sex (including pregnancy, sexual orientation, or gender identity), age, national origin or ancestry, physical or mental disability, veteran status, marital status, genetic information, HIV-positive status, as well as any other characteristic protected by federal, state, or local law. One of Hays’ guiding principles is ‘do the right thing’.
We also believe that actions speak louder than words.
In that regard, we train our staff on ensuring inclusivity throughout the entire recruitment process and counsel our clients on these principles. If you have any questions about Hays or any of our processes, please contact us.

In accordance with applicable federal, state, and local law protecting qualified individuals with known disabilities, Hays will attempt to reasonably accommodate those individuals unless doing so would create an undue hardship on the company. Any qualified applicant or consultant with a disability who requires an accommodation in order to perform the essential functions of the job should call or text 813.336.5570.

Drug testing may be required; please contact a recruiter for more information.

#LI-DNI