Logging and SIEM Deployment Specialist at Motion Recruitment Partners, LLC
Arlington, VA 22201
About the Job
Logging and SIEM Deployment Specialist
The Centralized Logging and SIEM Deployment Specialist will be responsible for researching, designing, and deploying a centralized logging solution and Security Information and Event Management (SIEM) system
The company is located in Washington D.C
and will remain 100% remote, needs to work EST hours.
What You Will Be Doing:
Applicants must be currently authorized to work in the United States on a full-time basis now and in the future.
This position doesn't provide sponsorship.
The Centralized Logging and SIEM Deployment Specialist will be responsible for researching, designing, and deploying a centralized logging solution and Security Information and Event Management (SIEM) system
The company is located in Washington D.C
and will remain 100% remote, needs to work EST hours.
What You Will Be Doing:
- Collect and document comprehensive details about current systems, including the number and types of workstations and servers, their operating systems, and whether they are hosted on-premises or in the cloud.
- Identify all application platforms to ensure thorough coverage in the logging and SIEM solution.
- Research and evaluate top industry solutions for centralized logging and SIEM that support both applications and infrastructure.
- Provide detailed recommendations for the most suitable logging/SIEM providers based on the organization's needs, security goals, and compliance requirements.
- Oversee the implementation of the selected centralized logging and SIEM solution, ensuring smooth integration with the existing infrastructure.
- Collaborate with internal and external stakeholders to guarantee the successful deployment of the SIEM, including the ingestion of data from endpoints, servers, and applications.
- Offer expert advice on optimizing the SIEM for fast incident response and producing actionable security alerts and reports.
- Ensure the implemented solution complies with all relevant regulations, including OMB M-22-09.
- Maintain and update documentation related to the deployment, configuration, and ongoing management of the centralized logging and SIEM system.
- Lead training sessions for staff on managing and using the centralized logging and SIEM system.
- Create knowledge transfer resources to support the long-term success of the system.
- Bachelor's degree.
- At least 8 years of experience in IT security, focusing on logging, monitoring, and SIEM deployment.
- Proven experience in implementing centralized logging and SIEM solutions in a complex enterprise environment.
- Strong knowledge of logging protocols, SIEM architecture, and cybersecurity best practices.
- Familiarity with a variety of operating systems, cloud platforms, and application environments.
- Expertise in evaluating and deploying SIEM tools like Splunk, IBM QRadar, or similar solutions.
- Excellent analytical, problem-solving, and decision-making skills.
- Strong communication skills, with the ability to explain complex technical concepts to non-technical stakeholders.
- Ability to work independently and as part of a team in a dynamic environment.
- Master's degree preferred.
- Relevant certifications, such as CISSP, CISM, or SIEM-specific certifications, are highly desirable.
- Must be eligible for Public Trust Clearance.
Applicants must be currently authorized to work in the United States on a full-time basis now and in the future.
This position doesn't provide sponsorship.