1

Logrhythm Siem Jobs (NOW HIRING)

Maintain SIEM solutions (Splunk, Sentinel, ELK, LogRhythm, Sumo Logic) in cloud environments (AWS, Azure, GCP) to support FedRAMP continuous monitoring requirements * Maintain and support SIEM ...

Maintain SIEM solutions (Splunk, Sentinel, ELK, LogRhythm, Sumo Logic) in cloud environments (AWS, Azure, GCP) to support FedRAMP continuous monitoring requirements * Maintain and support SIEM ...

TBD Required experience with SIEM Tools at least 2: HP ArcSight Security Manager (ESM) Qradar LogRhythm SolarWinds Splunk Enterprise Required experience with Scanning Tools at least 2: Wireshark ...

Network Security Engineer

$107K - $146K/yr

LogRhythm * ArcSight * Elastic SIEM Knowledge of: * SOC operations * Threat hunting * Log correlation * MITRE ATT&CK framework * Incident response * Threat intelligence integration Cloud ...

Practical experience working with SIEM platforms (Splunk, Microsoft Sentinel, LogRhythm, QRadar, Elastic) * Experience analyzing logs from endpoints, firewalls, IDS/IPS, cloud, and identity systems

... with SIEM tools (AlienVault, LogRhythm, FortiSIEM) • Experience with EDR tools (e.g., Carbon Black, Crowdstrike, etc) • Familiarity with firewalls, vulnerability management, and intrusion ...

Desired Qualifications • Experience with Security Information and Event Management (SIEM) systems like Elastic, Splunk, LogRhythm, QRadar, ArcSight Enterprise Security Manager (ESM), Crowdstrike ...

Experience with an enterprise-grade SIEM platform (e.g. QRadar, LogRhythm, CrowdStrike) * Working knowledge in network access control, intrusion prevention & detection systems, firewalls, routers ...

SOC Analyst

Arlington, VA · On-site

$120K - $160K/yr

Hands-on experience with SIEM platforms such as Splunk, QRadar, LogRhythm, or ArcSight. * Proven ability to analyze logs, packet captures, and payloads for advanced threat analysis and forensic ...

Experience with SIEM tools (AlienVault, LogRhythm, FortiSIEM) * Experience with EDR tools (e.g., Carbon Black, Crowdstrike, etc) * Familiarity with firewalls, vulnerability management, and intrusion ...

Experience with SIEM tools (AlienVault, LogRhythm, FortiSIEM) * Experience with EDR tools (e.g., Carbon Black, Crowdstrike, etc) * Familiarity with firewalls, vulnerability management, and intrusion ...

Experience with an enterprise-grade SIEM platform (e.g. QRadar, LogRhythm, CrowdStrike) * Working knowledge in network access control, intrusion prevention & detection systems, firewalls, routers ...

next page

Showing results 1-20

Logrhythm Siem information

See salary details

$39.5K

$107.3K

$141K

How much do logrhythm siem jobs pay per year?

As of Jul 3, 2026, the average yearly pay for logrhythm siem in the United States is $107,334.00, according to ZipRecruiter salary data. Most workers in this role earn between $91,500.00 and $130,000.00 per year, depending on experience, location, and employer.

What are some common challenges faced by LogRhythm SIEM analysts, and how can they effectively address them?

LogRhythm SIEM analysts often encounter challenges such as managing high volumes of alerts, fine-tuning correlation rules to reduce false positives, and keeping up with evolving cyber threats. To address these issues, analysts regularly review and update detection rules, collaborate with IT and security teams to understand the organization's risk landscape, and utilize automation features within LogRhythm to streamline repetitive tasks. Continuous professional development and staying current with threat intelligence are also essential for maintaining effective SIEM operations.

What is the difference between Logrhythm Siem vs Security Analyst?

AspectLogrhythm SiemSecurity Analyst
CertificationsSIEM-related certifications (e.g., Certified SOC Analyst)Security certifications (e.g., CompTIA Security+, CISSP)
Work EnvironmentSecurity operations centers, monitoring security alertsAnalyzing security incidents, investigating threats
Employer & IndustryIT security firms, large enterprisesCorporate security teams, government agencies

Logrhythm Siem professionals focus on managing SIEM tools like Logrhythm to monitor and analyze security data, while Security Analysts interpret security alerts, investigate incidents, and respond to threats. Both roles require security knowledge, but Logrhythm Siem specialists are more technical with SIEM platforms, whereas Security Analysts have broader security responsibilities.

What is a LogRhythm SIEM and what does it do?

LogRhythm SIEM (Security Information and Event Management) is a cybersecurity platform designed to collect, analyze, and manage security data from across an organization’s IT environment. It helps detect, respond to, and neutralize threats by aggregating logs and events from various sources and providing real-time monitoring and alerting. LogRhythm SIEM supports compliance, incident investigation, and threat detection through advanced analytics and automated workflows, making it a vital tool for security operations centers (SOCs).

What are the key skills and qualifications needed to thrive as a LogRhythm SIEM Analyst, and why are they important?

To thrive as a LogRhythm SIEM Analyst, you need a solid understanding of cybersecurity principles, network protocols, and experience with security event monitoring, often supported by a degree in information security or related certifications like CompTIA Security+ or GIAC. Proficiency with the LogRhythm SIEM platform, log analysis tools, and scripting languages such as Python or PowerShell is typically required. Analytical thinking, attention to detail, and strong communication skills help analysts identify threats and collaborate with IT teams. These skills are crucial for detecting cyber threats quickly, minimizing risks, and ensuring robust organizational security.
More about Logrhythm Siem jobs
What are the most commonly searched types of Logrhythm Siem jobs? The most popular types of Logrhythm Siem jobs are:
FireEye / Gigamon Cybersecurity Engineer with Security Clearance

FireEye / Gigamon Cybersecurity Engineer with Security Clearance

22nd Century Technologies, Inc.

Mclean, VA • On-site

Other

Posted 3 days ago


Job description

Position Title: FireEye / Gigamon Cybersecurity Engineer
Client: DCMA Enterprise Network Support Services (ENSS)
Location: 22nd Century Technologies, McLean, VA Clearance: Active DoD Secret Clearance Required Certification Requirements: • Security+ CE (IAT Level II minimum), CASP+, CISSP, CCNP Security, or equivalent preferred
Position Overview
The FireEye / Gigamon Cybersecurity Engineer provides engineering, administration, monitoring, and operational support for the Defense Contract Management Agency (DCMA) Enterprise Security Architecture. This position is responsible for deploying, managing, and optimizing FireEye/Trellix security platforms and Gigamon visibility solutions to enhance threat detection, network observability, incident response, and cybersecurity operations across DCMA enterprise environments.
The engineer works closely with Network Operations Center (NOC), Cybersecurity Operations, RMF, ACAS, SIEM, Firewall, and Network Engineering teams to ensure continuous monitoring, threat visibility, and protection of enterprise networks supporting CONUS and OCONUS users.
FireEye Helix was designed to unify network, endpoint, and third-party security visibility while integrating threat intelligence and automated security operations capabilities. Gigamon provides deep observability and network-derived intelligence by delivering optimized traffic to security and monitoring tools, eliminating network blind spots and improving threat detection. Primary Responsibilities
FireEye/Trellix Operations
• Administer and maintain FireEye/Trellix security platforms, including: o FireEye Network Security (NX) o FireEye Email Security (EX) o FireEye Endpoint Security (HX) o FireEye Helix SIEM/XDR o FireEye Central Management System (CMS) • Monitor and analyze security events, malware detections, indicators of compromise (IOCs), and advanced persistent threats (APTs). • Develop correlation rules, threat-hunting use cases, dashboards, and automated response workflows. • Integrate FireEye solutions with: o LogRhythm SIEM o ACAS o CheckPoint Firewalls o Cisco Security Platforms o Active Directory o Threat Intelligence feeds • Conduct incident response activities and forensic investigations utilizing FireEye and Mandiant intelligence resources. • Support Cybersecurity Service Provider (CSSP) operations and enterprise security monitoring. Gigamon Visibility Fabric Operations
• Engineer and administer Gigamon visibility solutions, including: o GigaVUE Appliances o GigaSMART o GigaVUE Fabric Manager o Deep Observability Pipeline • Configure TAPs, packet brokers, traffic aggregation, filtering, deduplication, and SSL/TLS decryption services. • Design and maintain traffic distribution policies supporting: o FireEye/Trellix o LogRhythm o ACAS o IDS/IPS o Network Performance Monitoring tools • Optimize east-west and north-south traffic visibility across: o Data Centers o Cloud Environments o Virtualized Infrastructure o Hybrid Networks • Perform packet analysis and troubleshooting using: o Wireshark o TCPDump o Gigamon Analytics Gigamon solutions provide traffic intelligence, packet optimization, metadata generation, filtering, and visibility across hybrid cloud and enterprise environments. Cybersecurity Engineering
• Develop and implement security architecture improvements. • Support RMF security controls and continuous monitoring activities. • Conduct vulnerability assessments and remediation validation. • Support STIG compliance initiatives. • Participate in Change Management and Configuration Control Boards (CCB). • Create engineering documentation, SOPs, implementation guides, and technical reports. • Provide Tier III escalation support for cybersecurity incidents. Monitoring and Reporting
• Provide 24x7x365 operational support as required. • Generate daily, weekly, and monthly cybersecurity status reports. • Brief government leadership on: o Security incidents o Threat trends o Visibility gaps o Risk mitigation actions o Compliance posture Required Qualifications
• Active DoD Secret Clearance. • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience). • Minimum 5 years of cybersecurity engineering experience. • Minimum 3 years supporting enterprise security monitoring platforms. • Experience with: o FireEye/Trellix products o Gigamon Visibility Fabric o LogRhythm SIEM o Cisco enterprise networking o Palo Alto or Check Point firewalls o Windows Server and Active Directory o Packet capture and analysis tools Preferred Qualifications
• FireEye/Trellix Certifications • Gigamon Certified Professional (GCP) • CISSP • CASP+ • CCNP Security • GCIA • GCIH • CEH Desired Knowledge and Skills
• Advanced Persistent Threat (APT) detection • Threat Hunting • Network Traffic Analysis • Incident Response • Malware Analysis • Security Automation • SIEM Engineering • IDS/IPS Technologies • Packet Broker Technologies • Network Forensics • Cloud Security Monitoring • Zero Trust Architecture • RMF and NIST 800-53 Controls Tools and Technologies
• FireEye Helix / Trellix XDR • FireEye HX, NX, EX • Gigamon GigaVUE • GigaSMART • GigaVUE-FM • LogRhythm SIEM • ACAS • SolarWinds • Wireshark • CheckPoint Firewalls • Cisco Routers and Switches • VMware • Active Directory • Splunk (desired) Work Environment
Supports the DCMA Enterprise Network Support Services (ENSS) program protecting over 200,000 users and millions of enterprise devices across global DoD networks. Position requires collaboration with Cybersecurity, NOC, Network Engineering, Firewall, Collaboration, and RMF teams in a mission-critical environment.
Travel: Up to 10% CONUS/OCONUS as required.
Shift Support: May include after-hours maintenance windows and on-call rotation.