1

Siem Detection Engineer Jobs (NOW HIRING)

Senior SIEM Engineer

Washington, DC · On-site

$130K - $145K/yr

We are seeking a cleared Senior SIEM Engineer to support security monitoring, detection engineering, log management, alerting, reporting, and incident response capabilities for classified and ...

$115K - $158K/yr

We're looking for a Senior Security Engineer to lead our Elastic SIEM and Detection Engineering program. This is an engineering-first role focused on building scalable detection pipelines, improving ...

$110K - $151K/yr

We're looking for a Senior Security Engineer to lead our Elastic SIEM and Detection Engineering program. This is an engineering-first role focused on building scalable detection pipelines, improving ...

$122K - $168K/yr

We're looking for a Senior Security Engineer to lead our Elastic SIEM and Detection Engineering program. This is an engineering-first role focused on building scalable detection pipelines, improving ...

$111K - $153K/yr

We're looking for a Senior Security Engineer to lead our Elastic SIEM and Detection Engineering program. This is an engineering-first role focused on building scalable detection pipelines, improving ...

Senior Threat Detection Engineer

Bellevue, WA · On-site

$128K - $176K/yr

As a Senior Threat Detection Engineer, you will take ownership of technical areas, leading ... Preferred : • Hands on experience with any log aggregation/SIEM tool such as and not limited to ...

$113K - $155K/yr

We're looking for a Senior Security Engineer to lead our Elastic SIEM and Detection Engineering program. This is an engineering-first role focused on building scalable detection pipelines, improving ...

$95K - $130K/yr

We're looking for a Senior Security Engineer to lead our Elastic SIEM and Detection Engineering program. This is an engineering-first role focused on building scalable detection pipelines, improving ...

Network Security Engineer

$107K - $146K/yr

... SIEM and related CrowdStrike services to improve threat detection, monitoring, and response ... Engineering and Alert Optimization 8 Required Experience in Log Source Integration and Data ...

New

next page

Showing results 1-20

Siem Detection Engineer information

See salary details

$25

$53

$76

How much do siem detection engineer jobs pay per hour?

As of Jul 14, 2026, the average hourly pay for siem detection engineer in the United States is $53.63, according to ZipRecruiter salary data. Most workers in this role earn between $43.27 and $62.26 per hour, depending on experience, location, and employer.

What is the difference between Siem Detection Engineer vs Security Analyst?

AspectSiem Detection EngineerSecurity Analyst
CertificationsCompTIA Security+, CEH, CISSP (preferred)CompTIA Security+, CEH, CISSP (preferred)
Work EnvironmentFocus on SIEM tools, log analysis, threat detectionBroader security monitoring, incident response, policy enforcement
Employer & Industry UsageIT security teams, cybersecurity firms, large enterprisesIT departments, security operations centers, government agencies

While both roles involve cybersecurity, a Siem Detection Engineer specializes in configuring and managing SIEM systems for threat detection, whereas a Security Analyst has a broader focus on monitoring security events, analyzing incidents, and implementing security policies. The roles often overlap but differ in scope and technical focus.

What are some common challenges faced by SIEM Detection Engineers when tuning detection rules, and how can they address them?

SIEM Detection Engineers often face challenges such as minimizing false positives, adapting to evolving threats, and ensuring detection rules remain relevant as the organization's environment changes. To address these challenges, engineers regularly review and refine correlation rules based on incident feedback, collaborate closely with SOC analysts and threat intelligence teams, and stay updated on emerging attack techniques. Continuous testing and validation of rules, as well as leveraging automation where possible, are key practices to maintain effective and actionable alerts.

What is a SIEM Detection Engineer?

A SIEM Detection Engineer is a cybersecurity professional responsible for designing, implementing, and maintaining Security Information and Event Management (SIEM) systems. They create and fine-tune detection rules to identify suspicious activities and potential threats within an organization's IT environment. Their role involves analyzing security logs, developing automated alerts, and collaborating with incident response teams to ensure rapid detection and response to security incidents. By continuously updating detection mechanisms, they help protect organizations from evolving cyber threats.

What are the key skills and qualifications needed to thrive as a SIEM Detection Engineer, and why are they important?

To thrive as a SIEM Detection Engineer, you need a strong background in cybersecurity, expertise in threat analysis, and experience with SIEM platforms, typically supported by a degree in computer science or related field and industry certifications like CISSP or GIAC. Mastery of tools such as Splunk, QRadar, or ArcSight, and scripting languages like Python or PowerShell, is commonly required. Analytical thinking, attention to detail, and effective communication are crucial soft skills for investigating incidents and collaborating with teams. These skills ensure proactive threat detection, rapid incident response, and the overall security of an organization's IT infrastructure.
More about Siem Detection Engineer jobs
What cities are hiring for Siem Detection Engineer jobs? Cities with the most Siem Detection Engineer job openings:
What states have the most Siem Detection Engineer jobs? States with the most job openings for Siem Detection Engineer jobs include:
What job categories do people searching Siem Detection Engineer jobs look for? The top searched job categories for Siem Detection Engineer jobs are:
Infographic showing various Siem Detection Engineer job openings in the United States as of July 2026, with employment types broken down into 93% Full Time, 5% Part Time, and 2% Contract. Highlights an 91% Physical, 2% Hybrid, and 7% Remote job distribution, with an average salary of $111,552 per year, or $53.6 per hour.
Senior SIEM Engineer

Senior SIEM Engineer

ECS

Washington, DC • On-site

$130K - $145K/yr

Full-time

Re-posted 5 days ago


Job description

Everforth ECS is seeking a Senior SIEM Engineer to work in our Washington, DC office. Please Note: This position is contingent upon contract award.
We are seeking a cleared Senior SIEM Engineer to support security monitoring, detection engineering, log management, alerting, reporting, and incident response capabilities for classified and sensitive law enforcement, national security, and criminal justice environments within the National Security Business Unit. The Senior SIEM Engineer will serve as a technical lead for SIEM operations, log onboarding, detection content development, dashboarding, alert tuning, incident triage, continuous monitoring, compliance reporting, and security analytics modernization. The Senior SIEM Engineer will support security monitoring, detection engineering, log management, alerting, reporting, and incident response capabilities for classified and sensitive environments serving law enforcement, national security, and criminal justice missions. This role focuses on improving visibility, analytics, and operational security across enterprise systems, applications, endpoints, networks, and security tools.
The Senior SIEM Engineer will also contribute to National Security Business Unit growth by identifying opportunities to improve threat visibility, expand log coverage, automate security workflows, enhance insider threat support, improve compliance reporting, and develop new cybersecurity analytics capabilities.
Responsibilities
  • Configure, operate, tune, and maintain SIEM and security analytics platforms.
  • Onboard log sources, troubleshoot data ingestion, and improve log coverage across systems, applications, networks, and endpoints.
  • Develop correlation rules, alerts, dashboards, reports, and detection content.
  • Support incident triage, investigation, security monitoring, compliance reporting, and continuous monitoring.
  • Tune detections, reduce false positives, and improve alert quality.
  • Coordinate with cybersecurity, infrastructure, application, network, and operations teams.
  • Support insider threat, audit, vulnerability, and enterprise security initiatives.
  • Mentor cybersecurity analysts, system administrators, ISSOs, incident responders, and infrastructure teams.
  • Develop reusable playbooks, detection documentation, reporting templates, and knowledge-transfer materials.
  • Identify opportunities for automation, expanded analytics, improved visibility, and new cybersecurity services.

Salary Range: $130,000 - $145,000
General Description of Benefits
  • Active Top Secret clearance with SCI eligibility; TS/SCI preferred.
  • 6+ years of SIEM engineering, cybersecurity engineering, SOC support, detection engineering, or security monitoring experience.
  • Experience with SIEM tools such as Splunk, Elastic, QRadar, or equivalent platforms.
  • Knowledge of log ingestion, correlation rules, dashboards, alerting, incident response, vulnerability management, and compliance reporting.
  • Ability to troubleshoot data ingestion and coordinate across technical teams.
  • Strong documentation, analytical, and communication skills.