Remote Senior SIEM Security Engineer

Summary

Join Kaseya, a leading provider of IT infrastructure and security management solutions, as a Senior SIEM Security Engineer. You will be a technical contributor building and maintaining infrastructure-focused security solutions, improving Kaseya's security posture. This role involves planning, coordinating, and executing security initiatives, designing and implementing robust security measures, and defending against potential threats. The ideal candidate possesses prior experience as a security-focused systems administrator, strong communication and project management skills, and a deep understanding of SIEM platforms and security best practices. The position is located in Kaseya's cutting-edge offices and requires limited off-hours support and potential travel.

Requirements

• Prior experience as a security focused systems administrator is required
• Understanding of Data Normalization and Regular Expressions
• Intrusion Detection, Threat, and Vulnerability Management tools for enrichment
• Log Aggregation and Correlation
• On-prem, Cloud and hybrid clouds
• Experience building and managing SIEM platforms (e.g., Securonix, Splunk, Graylog, Elastic)
• Infrastructure as Code tools (e.g., Terraform, Cloudformation)
• Host-based security controls (e.g., IPTables, Mod_security, HIDS, FIM)
• Configuration management tools (e.g., Puppet, Salt, Ansible, Chef)
• Virtualization technologies (e.g., KVM, OpenStack, OVirt, VMware, Hyper-V)
• Track, manage and resolve incidents and requests using a ticket system
• Request, Incident and Change Management practices
• Strong leadership skills to mentor junior team members and lead projects
• Prior experience as Senior SIEM Security Engineer
• Working understanding of modern security vulnerabilities and best practices
• Strong background in Linux and Windows Operating Systems
• Experience scripting and automating workflows
• Working experience in enterprise environments
• Foundational understanding of networking
• Experience troubleshooting complex systems
• Strong written and verbal communication skills, with a passion for documentation
• Works effectively under pressure in a fast-paced, dynamic environment
• Strong work ethic and an insatiable desire to learn
• It thrives in a team-based environment leaving ego at the door
• Continuously strive for the betterment of engineering at Kaseya
• Ensure that security concerns are accounted for in every Infrastructure Security platform
• Engineer Infrastructure Security platforms that are secure, stable, maintainable, and scalable
• Develop and enforce Infrastructure Security standard methodologies, processes, and tools
• Be the bridge between Infrastructure Security, Software and Systems engineering
• Identify trends in need of a larger solution, beyond the scope of the immediate problem
• Design and champion best Infrastructure Security practices within the organization
• Solve complex and challenging issues with simple, maintainable, and scalable solutions

Responsibilities

• Perform Installation and configuration of SIEM platforms
• Ensure SIEM platforms operate and perform at optimal levels
• Provide guidance and support for data collection of a variety of operating systems, applications, appliances, and networking platforms
• Provide guidance and support in the creation of dashboards, metric reports and analytics using SIEM tools
• Maintain and develop engineering and security documentation
• Plan and execute security engineering initiatives
• Work with stakeholders to refine the acceptance criteria of security objectives
• Provide security centric guidance during design and maintenance
• Iterate on security guidelines, raising expectations for new and existing infrastructure
• Performs other security related duties as assigned
• Limited off-hours support is required (On-Call rotation)
• Limited travel may be required

Preferred Qualifications

• Understanding of EDR and MDR platforms
• Understanding of Asset Management platforms