Sr. Cyber Capability Developer (SIEM Engineer)
Apply NowCompany: Graham Technologies
Location: Huntsville, AL 35810
Description:
Graham Technologies is seeking an experienced Cyber Capability Developer (SIEM Engineer) who will be responsible for developing and maintaining SIEM configurations, enabling advanced detection and response capabilities, and contributing to a proactive security posture across the enterprise.
Location: Huntsville, AL
Key Responsibilities:
Required Skills:
Preferred Skills:
Compensation:
At Graham Technologies, we believe in treating everyone with fairness and respect. Our compensation package is designed to ensure fair pay for work, reflecting our commitment to integrity.
Many IT companies offer similar services, but what truly sets us apart is our people! We care deeply about our employees and consistently show our appreciation-not just for the final outcomes, but also for the effort and dedication shown every step of the way. Additionally, our generous benefits package supports our team members in living fulfilling and prosperous lives.
Here are just a few highlights of what we offer:
Why Graham Technologies?
Our core values define who we are:
Founded in 2007, GTech is a consulting services firm passionate about delivering tailored solutions that meet our clients' needs and maximize the value of their investments. We achieve this by providing top-notch professionals across the IT industry. Our team embodies integrity, commitment, and reliability, which are at the heart of everything we do.
We are also dedicated to fostering a culture of support for our employees-the lifeblood of our business. At Graham Technologies, we've built a family-oriented environment where team members are encouraged to maintain a healthy work-life balance, pursue their passions, and grow professionally through flexible schedules, continued education, and a strong sense of community.
Location: Huntsville, AL
Key Responsibilities:
- SIEM Integration & Data Ingestion: Design, develop, and maintain configurations to collect and parse logs and event data for SIEM analysis (e.g., Splunk).
- Alerting & Detection Development: Create and fine-tune custom searches, correlation rules, and alerts to identify and respond to security incidents.
- Use Case Development: Work with SOC analysts to translate security requirements into actionable use cases and detection content.
- Query Optimization: Develop efficient queries and dashboards for real-time threat monitoring and incident investigation.
- Playbook Development: Create and maintain operational playbooks and integrate threat intelligence feeds into SIEM workflows.
- Threat Awareness: Stay current on emerging threats, vulnerabilities, and industry best practices to enhance detection capabilities.
- Configuration Management: Document configurations, update SIEM content regularly, and provide knowledge transfer to team members.
- Forensics Tool Integration: Leverage tools such as the Axiom Forensics Suite to support deeper investigation and forensic analysis.
- Compliance & Security Standards: Ensure all SIEM configurations and activities align with internal policies and regulatory requirements.
Required Skills:
- Must have an active TS; SCI Eligible or higher
- Splunk Enterprise Security
- Axiom Forensics Suite
- 8+ years of experience in cybersecurity, with expertise in SIEM engineering and threat detection.
- Proven experience with log ingestion, correlation rule development, and integration of forensic and threat intelligence tools.
- Strong understanding of cyber threat landscapes, attack vectors, and incident response methodologies.
- Ability to collaborate effectively across multidisciplinary teams and mentor junior engineers.
Preferred Skills:
- Bachelor's degree in Information Security, Computer Science, or a related field (or equivalent experience)
- Certifications (one or more desired):
- GIAC Continuous Monitoring Certification (GMON)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Forensic Analyst (GCFA)
- GIAC Certified Intrusion Analyst (GCIA)
- GIAC Network Forensic Analyst (GNFA)
- GIAC Cloud Threat Detection (GCTD)
- GIAC Cloud Forensics Responder (GCFR)
- GIAC Advanced Smartphone Forensics Certification (GASF)
- GIAC Mobile Device Security Analyst (GMOB)
Compensation:
At Graham Technologies, we believe in treating everyone with fairness and respect. Our compensation package is designed to ensure fair pay for work, reflecting our commitment to integrity.
Many IT companies offer similar services, but what truly sets us apart is our people! We care deeply about our employees and consistently show our appreciation-not just for the final outcomes, but also for the effort and dedication shown every step of the way. Additionally, our generous benefits package supports our team members in living fulfilling and prosperous lives.
Here are just a few highlights of what we offer:
- Four Weeks of Accrued PTO in the First Year
- Eleven Paid Federal Holidays
- Comprehensive Health, Dental, Vision, and Life Insurance
- 401(k) Plan with Annual Employer Contributions
- Flexible Schedules
- Reimbursements for Continued Education and Training
Why Graham Technologies?
Our core values define who we are:
- Value our Customers
- Care about our Employees
- Passionate about Innovation
- Believe in a Strong Work Ethic
- Rely on Teamwork
- Integrity Matters
Founded in 2007, GTech is a consulting services firm passionate about delivering tailored solutions that meet our clients' needs and maximize the value of their investments. We achieve this by providing top-notch professionals across the IT industry. Our team embodies integrity, commitment, and reliability, which are at the heart of everything we do.
We are also dedicated to fostering a culture of support for our employees-the lifeblood of our business. At Graham Technologies, we've built a family-oriented environment where team members are encouraged to maintain a healthy work-life balance, pursue their passions, and grow professionally through flexible schedules, continued education, and a strong sense of community.