The Role
The SIEM Engineer designs, deploys, and maintains SIEM systems for cybersecurity. Responsibilities include optimizing performance, supporting incident response, and integrating log sources across environments.
Summary Generated by Built In
Be Challenged and Make a Difference
In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture.
Description of Task to be Performed:
AnaVation is seeking an experienced SIEM (Security Information and Event Management) Engineer to provide support to a mission critical customer. The selected candidate will be responsible for the design, deployment, configuration, and maintenance of SIEM systems across multiple classification enclaves.
Key Responsibilities
· Support the architecture, engineering, optimization, and sustainment of Security Information and Event Management (SIEM) platforms supporting defensive cyber operations, advanced threat detection, incident response, and compliance initiatives
· Perform configuration, management and maintenance of network firewalls, security and encryption devices, including IDS, NAC and SIEM systems.
· Integrate diverse log sources including firewalls, IDS/IPS, EDR, servers, network devices, security appliances, and cloud environments.
· Optimize SIEM performance, storage architecture, data retention policies, and system scalability.
This position is on site with the customer in Washington, DC and cannot be supported remotely.
The selected candidate must possess an active TS clearance with the ability to obtain SCI accesses. Candidates
without an active TS cannot be considered.
Required Qualifications:
- 6+ years of cybersecurity experience, with at least 5 years focused on SIEM engineering in enterprise environments.
- Experience supporting federal government systems at multiple security levels, strong knowledge of federal cybersecurity frameworks, and the ability to provide technical support within a secure environment.
- Hands-on experience with one or more enterprise SIEM platforms.
- Experience engineering and sustaining SIEM solutions in classified or air-gapped environments.
- Familiarity with cross-domain solutions and secure data transfer controls.
- Strong expertise in:
- Log normalization and parsing
- Advanced correlation rule development
- Threat detection engineering
- Network protocols and traffic analysis
- Windows and Linux security logging
- Active TS clearance with the ability to obtain SCI accesses.
Preferred Qualifications:
- Bachelor’s degree in Information Technology, Computer Science, Information Systems or related field
- Proficiency in scripting/automation (Python, PowerShell, Bash).
- Deep understanding of MITRE ATT&CK and threat detection methodologies.
- Demonstrated ability to work independently and lead technical initiatives in highly regulated environments.
- Knowledge of Zero Trust architecture principles.
- Relevant certifications such as GIAC (GCIA, GCIH, GCED) or CISSP a plus, but not required.
Benefits
- Generous cost sharing for medical insurance for the employee and dependents
- 100% company paid dental insurance for employees and dependents
- 100% company paid long-term and short-term disability insurance
- 100% company paid vision insurance for employees and dependents
- 401k plan with generous match and 100% immediate vesting
- Competitive Pay
- Generous paid leave and holiday package
- Tuition and training reimbursement
- Life and AD&D Insurance
About AnaVation
AnaVation is the leader in solving the most complex technical challenges for collection and processing in the U.S. Federal Intelligence Community. We are a US owned company headquartered in Chantilly, Virginia. We deliver groundbreaking research with advanced software and systems engineering that provides an information advantage to contribute to the mission and operational success of our customers. We offer complex challenges, a top-notch work environment, and a world-class, collaborative team.
If you want to grow your career and make a difference while doing it, AnaVation is the perfect fit for you!
AnaVation is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.
Skills Required
- 6+ years of cybersecurity experience
- 5 years focused on SIEM engineering in enterprise environments
- Active TS clearance with ability to obtain SCI accesses
- Hands-on experience with enterprise SIEM platforms
- Experience engineering SIEM solutions in classified environments
- Strong expertise in log normalization and parsing and threat detection
Am I A Good Fit?
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
AnaVation is a trusted partner that delivers high-value, cost-effective solutions to solve our customers’ most complex technical and analytical problems. AnaVation believes that the future of securing, collecting, processing, and analyzing cyber data will require the development of advanced ANAlytical technologies derived via the innoVATION of current and future technologies. AnaVation believes in the “Idea of the Possible” — that it is possible for our experts, partnering with our customers in the right environment, to create innovative technical solutions that expand our customers’ capabilities. We want to do two things for our customers. We want to resolve existing challenges and we want to prepare them for the future. Our technical expertise and innovative engineering culture enable us to do those things.
