JOBSEARCHER

FCC - Security Engineer / SIEM Engineer

ARCHIVED

We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.

cFocus Software seeks a Security Engineer / SIEM Engineer to join our program supporting the Federal Communications Commission (FCC). This position is remote. This position requires the ability a Public Trust clearance.Qualifications:Bachelor’s degree in cybersecurity, IT, or related field (or equivalent experience)Demonstrated experience in enterprise cybersecurity, SIEM engineering, or monitoring environmentsExperience supporting systems of similar scale, complexity, or criticalityAbility to support engineering, monitoring, and operational cybersecurity functionsExperience with enterprise SIEM platforms (e.g., Splunk, Sentinel, QRadar)Strong understanding of log management, event correlation, and telemetry pipelinesKnowledge of cybersecurity frameworks (NIST, RMF, FISMA)Experience with cloud and hybrid environments (Azure, AWS, M365)Familiarity with EDR, XDR, and network security toolsAbility to analyze large datasets and identify security trendsExperience supporting SOC operations and incident responseExperience with automation and SOAR platformsKnowledge of Zero Trust Architecture and modern security frameworksScripting experience (Python, PowerShell)Familiarity with threat intelligence and threat hunting techniquesRequired CertificationsCompTIA Security+Certified Information Systems Security Professional (CISSP) (preferred)GIAC certifications (e.g., GCIA, GCIH)Splunk, Microsoft Sentinel, or other SIEM platform certificationsEquivalent certifications demonstrating similar competency may be accepted Duties: Administer, configure, and optimize SIEM platforms and monitoring toolsIntegrate and onboard new data sources, ensuring proper normalization and validationDevelop and tune detection rules, alerts, and correlation logic to reduce false positivesSupport log management, telemetry pipelines, and enterprise monitoring architectureIdentify gaps in visibility and recommend enhancements to monitoring coverageCollaborate with SOC/NOC teams to improve detection and response capabilitiesPerform detection engineering and continuous improvement of monitoring outputsSupport configuration management and monitoring of security control effectivenessDevelop and maintain technical documentation, procedures, and engineering baselinesParticipate in incident investigations, threat hunting, and root cause analysis.