SIEM Administrator jobs in United States
cer-icon
Apply on Employer Site
company-logo

State of South Carolina ยท 1 day ago

SIEM Administrator

positionColumbia, SC
timeFull-time
remoteOnsite
seniorityMid, Senior Level
date4+ years exp

The South Carolina Law Enforcement Division (SLED) is a premier statewide law enforcement agency dedicated to serving and protecting the citizens of South Carolina. They are seeking a SIEM Administrator responsible for designing and implementing best practices within the organization's SIEM, ensuring log ingestion, and providing support to enhance the security posture of the agency.

Government
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Manage the organization's SIEM solution according to industry best practices to ensure the organization is postured to identify and counter emerging cyber threats
Conduct log ingestion monitoring to ensure contact log ingestion of critical log sources. Normalize and parse new log sources for ingestion, and ensure proper log forwarding, parsing, and enrichment of logs
Monitor log retention to meet regulatory requirements and ensure SOC has access to enough logs and data to respond to incidents. Supervise the storage capacity, indexing performance, and search head/cluster health to ensure availability
Create and maintain automation workflows within the SIEM utilizing SOAR integration to increase efficiency and provide the SOC with additional capabilities and enrichment of alert data
Assist the detection engineer and SOC in tuning rules to reduce false positives while maintaining detection efficacy and provide support in threat hunting initiatives with custom searches and analytics
Provide SC CIC agencies with subject matter expertise in SIEM management and additional support to increase their security posture and prepare them to handle security incidents

Qualification

SIEM managementLog ingestionLog parsingCybersecurity conceptsAutomation workflowsWindows log sourcesCommunication skillsLeadership ability

Required

Bachelor's degree in a related field or at least four (4) years of relevant work experience in the areas of information technology, information security, and risk management
Must have good written and verbal communication skills
Must have the ability to lead mid level position in Information Security
Must have a strong foundational knowledge in cybersecurity concepts and operations
Must have a comprehensive understanding of Windows and third party application log sources, log ingestion, and log parsing
This position is in-person based in Columbia, South Carolina
Position is expected to be available on-call 24/7
Statewide travel, including some overnight travel, will be required

Benefits

Health, Dental, Vision, Long Term Disability, and Life Insurance for Employee, Spouse, and Children
15 days annual (vacation) leave per year
15 days sick leave per year
13 paid holidays
Paid Parental Leave
State Retirement Plan and Deferred Compensation Programs

Company

State of South Carolina

twittertwittertwitter
Glassdoor3.2
company-logo
South Carolina is a southeastern U.S. state.
dateFounded in 2005
location
Columbia, South Carolina, USA
people-size10001+ employees
web-link
https://sc.gov/

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
David Sella-Villa
Chief Privacy Officer
linkedin
leader-logo
Mark Rhoden
Chief Financial Officer, Office of Regulatory Staff
linkedin

Recent News

UPSTATE BUSINESS JOURNAL
Greenville downtown entertainment district gets initial OK: City Council notes
2025-11-26
The Herald
Impact of US election for Scottish firms in spotlight
2024-11-02
Company data provided by crunchbase