Cyber Security Engineer - SIEM

Cyber Security Engineer - SIEM

Department: Security Operations

Employment Type: Full Time

Location: Remote

Description

 Company Background

With 30 years of experience in cyber defense, DeepSeas is trusted by nearly 1,000 clients around the world, including Fortune 100 enterprises and mid-market organizations, higher education institutions, municipality and local governments, and federal agencies. Known for its programmatic approach to continuously transforming cyber defense programs, DeepSeas is recognized by Gartner as a top 40 provider of MDR and ranked as a top 5 MDR leader in the 2024 Frost Radar™: Global Managed Detection and Response (MDR) Market. In addition to its industry-leading MDR service, DeepSeas offers a full suite of advisory, compliance, and testing services to support clients on their cybersecurity transformation journeys, with an approach to cyber defense that prioritizes technical expertise, tradecraft, and continuous innovation to deliver unparalleled results.

Position Overview Cybersecurity engineers specialize in managing and configuring various cyber tools and technologies. They bring a combination of expert cybersecurity knowledge and practical technical operations experience. As members of the Technology Operations Center, they will play a crucial role in providing the technical skills to maximize the effectiveness of our clients’ cyber technology.

This client-facing role will require regular interaction with the client’s SOC and cybersecurity teams. Provide platform management services on several SIEM technologies, covering the entire lifecycle of cyber tool management. Ensure client SIEMs operate efficiently and run DeepSeas advanced cyber threat detection rules. This role will primarily work with Devo SIEM.

Key Responsibilities

• Cybersecurity Subject Matter Expertise – Provide answers to clients' cybersecurity-related inquiries. Offer insight, guidance, and recommendations based on your personal knowledge and experience and DeepSeas methodologies. 
• Cyber Tools Subject Matter Expertise – Provide deep technical expertise on the deployment, configuration, and operation of the cyber tools used by our clients. Provide support for optimizing and establishing best practices. The role makes extensive use of Devo and requires significant experience and expertise with it.
• Operational Focus and Mindset – Be prepared to work in a mission-oriented operations team. Act with a sense of urgency and importance. Provide vigilance and diligence to ensure constant high quality.
• Platform Integration – Support clients in integrating with the DeepSeas platform. Follow standard operating procedures and aid clients in the onboarding process.
• Monitoring and Response – Utilize the team’s tools and processes to monitor our clients’ cyber tools and respond to potential issues rapidly.
• Troubleshooting and Analysis – Provide expertise and technical skills in the identification and remediation of issues within our clients’ cyber tools. Conduct root cause analysis to determine underlying failures and steps to prevent them in the future.
• Documentation and Reporting – Produce written documentation that outlines the steps and processes required for successful operations. Identify the requirements for operational success and create procedures to deliver the result.
• Training and Continuous Improvement – Attend and conduct training sessions to improve the capabilities of the team. Share knowledge and experience of specific cyber technologies and foster a collaborative learning environment.

Skills Knowledge and Expertise

Below are the minimum skills, formalized training, practical experience and/or education required to perform the general functions and duties of the role.  

• Proven experience in delivering technical missions in a cybersecurity environment. 
  • Minimum 5 years (4 with Bachelor’s). 
  • Preferred 7 years (6 with Bachelor’s).
• Extensive experience and expertise with Devo.
• Experience in a support or operations role involving systems deployment, management, and troubleshooting.
• Strong understanding of networking and security.
• Significant client delivery experience is preferred.

Why DeepSeas?

At Deep Seas, we like to say that heart rates go down, careers take off, and security programs mature. Our values provide the ultimate guide for our daily behavior and decisions. Without these values, we aren’t Deep Seas. They preserve the essence of our organization, reflect the personalities of our Deeps (how we affectionately refer to our teammates), and enable us to exceed expectations. Our values are:

• We are client obsessed. 
• We stand in solidarity with our teammates.
• We prioritize personal health and well-being.
• We believe in the power of diversity.
• We solve hard problems at the speed of cyber.

This is your chance to join a supportive crew of teammates and an industry-leading organization that values opportunities for growth. If DeepSeas sounds like a good fit for you, send us your resume and let’s talk!

Information security is everyone’s responsibility:

• Understanding and following DeepSeas’s information security policies and procedures.
• Remaining vigilant and reporting any suspicious activity or possible weaknesses in DeepSeas’s information security.
• Actively participating in DeepSeas’s efforts to maintain and improve information
• security.
• DeepSeas considers this position is as Moderate Risk with a potential to
• view/access/download restricted/private client/internal data. This information must be treated with
• Sensitivity and in the most secure manner. HR reserves the right to perform random background/drug
• Screens to ensure the safety of client/DeepSeas data