1

Siem Content Developer Jobs (NOW HIRING)

Sr Security Analyst

Scott Air Force Base, IL · On-site

$92K - $121K/yr

Threat Detection Engineering (Analyst-led): Implement and improve log-based and endpoint-based ... Develop and tune SIEM content such as detection rules, machine learning rules, dashboards, and ...

Sr. Security Analyst

Scott Air Force Base, IL · On-site

$92K - $121K/yr

... Engineering (Analyst-led): Implement and improve log-based and endpoint-based detection strategies ... Develop and tune SIEM content such as detection rules, machine learning rules, dashboards, and ...

SIEM Engineer

Washington, DC · Remote

$71 - $76/hr

Develop documentation for SIEM configurations, onboarding processes, and detection content ... Experience Requirements: * 5+ years in SIEM engineering, SOC operations, or cybersecurity ...

... and optimize content for a complex and growing SIEM infrastructure, including use cases for ... Engineering processes • Work closely with clients to deliver the value of a SIEM to overall ...

Senior Security Engineer

Fort Belvoir, VA

$129K - $177K/yr

Design, engineer, and secure cloud architecture within AWS IL-4/5 environments, implementing robust ... Maintain and update SIEM content (dashboards, alerts, reports) in alignment with IR playbooks and ...

Senior Security Engineer

Fort Belvoir, VA · On-site

$129K - $177K/yr

Maintain and update SIEM content (dashboards, alerts, reports) in alignment with IR playbooks and ... Extensive, hands-on engineering experience and operating within multi-cloud IL-4/5 secure cloud ...

Senior Security Engineer

Fort Belvoir, VA · On-site

$129K - $177K/yr

Design, engineer, and secure cloud architecture within AWS IL-4/5 environments, implementing robust ... Maintain and update SIEM content (dashboards, alerts, reports) in alignment with IR playbooks and ...

Senior Security Engineer

Fort Belvoir, VA · On-site

$129K - $177K/yr

Design, engineer, and secure cloud architecture within AWS IL-4/5 environments, implementing robust ... Maintain and update SIEM content (dashboards, alerts, reports) in alignment with IR playbooks and ...

next page

Showing results 1-20

Siem Content Developer information

See salary details

$29.5K

$116.6K

$129K

How much do siem content developer jobs pay per year?

As of Jul 11, 2026, the average yearly pay for siem content developer in the United States is $116,615.00, according to ZipRecruiter salary data. Most workers in this role earn between $123,000.00 and $128,000.00 per year, depending on experience, location, and employer.

What are some common daily responsibilities of a Siem Content Developer?

Siem Content Developers typically spend their days creating and refining detection rules, correlation searches, and security alerts within SIEM platforms to identify suspicious activities. They work closely with security analysts to understand emerging threats, tune existing content for accuracy, and research new attack techniques to ensure early detection. Regular responsibilities also include analyzing security logs, testing and documenting new rules, and collaborating with IT or incident response teams to translate business risk into technical controls. This collaborative and analytical environment helps foster ongoing professional development and deeper expertise in threat detection.

What are the key skills and qualifications needed to thrive in the Siem Content Developer position, and why are they important?

A successful Siem Content Developer possesses strong cybersecurity expertise, experience with SIEM platforms (such as Splunk, IBM QRadar, or ArcSight), and the ability to write detection rules and correlation logic. Familiarity with scripting languages, threat intelligence sources, and relevant certifications like CISSP or CompTIA Security+ are highly valuable. Excellent problem-solving, collaboration, and communication skills help developers work effectively with security teams and stakeholders. These competencies ensure the development of accurate, actionable detection content, keeping organizations protected from evolving cyber threats.

What is a SIEM Content Developer job?

A SIEM Content Developer is responsible for designing, creating, and optimizing security information and event management (SIEM) content such as correlation rules, dashboards, alerts, and reports. Their role involves analyzing security events, identifying threats, and enhancing detection capabilities. They work closely with security analysts and engineers to fine-tune SIEM configurations, improve threat detection, and reduce false positives. This role requires expertise in log analysis, threat intelligence, and scripting to customize SIEM solutions for an organization's security needs.

What cities are hiring for Siem Content Developer jobs? Cities with the most Siem Content Developer job openings:
What are the most commonly searched types of Siem Content Developer jobs? The most popular types of Siem Content Developer jobs are:
Infographic showing various Siem Content Developer job openings in the United States as of July 2026, with employment types broken down into 1% Internship, 72% Full Time, 24% Part Time, 1% Temporary, and 2% Contract. Highlights an 76% Physical, 3% Hybrid, and 21% Remote job distribution, with an average salary of $116,615 per year, or $56.1 per hour.
Cybersecurity Engineer [JOB ID 20260707]

Cybersecurity Engineer [JOB ID 20260707]

Phoenix Cyber

Fredericksburg, VA • On-site

$70K - $130K/yr

Full-time

Posted 4 days ago


Job description

Phoenix Cyber is looking for Cybersecurity Engineers to join our client delivery team. 

Requirements:

  • Degree in a STEM related discipline and/or a minimum 5 years of experience
  • Prior experience or support of Security Operations and Incident Response
  • Excellent understanding of Cyber Security Operations and Incident Response processes
  • IT certifications such as CySA, CEH, etc
  • Security clearance required

Nice to have:

  • Demonstrated proficiency in cyber security platforms: SOAR, SIEM, IDS/IPS, DLP, WAF, Endpoint Security
  • Linux administration experience
  • Cloud infrastructure experience (AWS, Google, or Azure)

Responsibilities:

  • Provide technical expertise and real-life experience in creating innovative solutions within the cybersecurity space
  • Candidate will develop, support, tune and deploy security solutions
  • Creates WAF rules to mitigate threats and implement security best practices
  • Develop and enhance SIEM content for Cybersecurity teams, including correlations, enrichments, dashboards, reports, and alerts that appropriately illustrate and characterize web application attacks and mitigation mechanisms
  • Develop and implement automations in response to security incidents
  • Ability to navigate and adapt to a fast-paced ever-changing environment with a team of like-minded, cross-functional individuals

Phoenix Cyber is a national provider of cybersecurity engineering services, operations services, sustainment services and managed security services to organizations determined to strengthen their security posture and enhance the processes and technology used by their security operations team.

Phoenix Cyber is an equal opportunity employer and complies with Executive Order 11246, Section 503 of the Rehabilitation Act of 1973, the Vietnam Era Veteran's Readjustment Assistance Act (VEVRAA), all amendments to these regulations, and applicable executive orders, federal, and state regulations. Applicants are considered without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, and/or veteran status.

Phoenix Cyber participates in E-Verify to confirm the employment eligibility of all newly-hired employees. To learn more about E-Verify, including your rights and responsibilities, go to https://www.e-verify.gov/
 

Powered by JazzHR

JtcAr7dbE9