Remote Duration: 12 Months Important Notes: * Location: Remote - anywhere in the US and need to ... Integrate AWS Security Hub and GuardDuty findings into SIEM platforms (Splunk, Elastic, etc.
Quick apply
Remote Duration: 12 Months Important Notes: * Location: Remote - anywhere in the US and need to ... Integrate AWS Security Hub and GuardDuty findings into SIEM platforms (Splunk, Elastic, etc.
Lead Security Tools Engineer
Raleigh, NC · On-site +1
Mentor and support the development of team members Job Designation Remote: Employee is not required ... Experience integrating security tools with SIEM, SOAR, or ITSM platforms * Familiarity with ...
Lead Security Tools Engineer
Raleigh, NC · On-site +1
Mentor and support the development of team members Job Designation Remote: Employee is not required ... Experience integrating security tools with SIEM, SOAR, or ITSM platforms * Familiarity with ...
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Raleigh, NC · Remote
BeyondTrust for privileged secure remote access management * Familiarity with other vendor tools ... Bachelor's degree in Engineering, Computer Science, Information Security, or related field. * 7+ ...
New
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Raleigh, NC · Remote
BeyondTrust for privileged secure remote access management * Familiarity with other vendor tools ... Bachelor's degree in Engineering, Computer Science, Information Security, or related field. * 7+ ...
New
Siem Engineer Remote information
See Raleigh, NC salary details
$24.77 - $29.29
1% of jobs
$29.29 - $33.82
5% of jobs
$33.82 - $38.34
9% of jobs
$42.25 is the 25th percentile. Wages below this are outliers.
$38.34 - $42.87
12% of jobs
$42.87 - $47.39
10% of jobs
The median wage is $51.59 / hr.
$47.39 - $51.92
15% of jobs
$51.92 - $56.44
15% of jobs
$59.65 is the 75th percentile. Wages above this are outliers.
$56.44 - $60.97
13% of jobs
$60.97 - $65.49
10% of jobs
$65.49 - $70.02
10% of jobs
$70.02 - $74.54
2% of jobs
$24
$52
$74
How much do siem engineer remote jobs pay per hour?
As of May 29, 2026, the average hourly pay for siem engineer remote in Raleigh, NC is $52.13, according to ZipRecruiter salary data. Most workers in this role earn between $42.07 and $60.53 per hour, depending on experience, location, and employer.
What are the key skills and qualifications needed to thrive as a SIEM Engineer (Remote), and why are they important?
To thrive as a SIEM Engineer (Remote), you need strong expertise in cybersecurity principles, log analysis, and incident response, often supported by a degree in information security or related certifications like CompTIA Security+ or CISSP. Familiarity with SIEM platforms such as Splunk, IBM QRadar, or ArcSight, as well as scripting and automation tools, is essential. Excellent problem-solving, communication, and the ability to work independently are crucial soft skills for remote collaboration and timely threat detection. These skills ensure effective monitoring, quick response to security threats, and seamless teamwork in distributed environments.
What are some common challenges faced by remote SIEM Engineers, and how can they be addressed?
Remote SIEM Engineers often face challenges such as maintaining clear communication with security teams, managing alerts across multiple time zones, and ensuring secure access to sensitive systems. To address these, it's important to leverage collaboration tools, establish clear incident response protocols, and use secure VPNs or access controls. Regular virtual meetings and thorough documentation also help keep everyone aligned and ensure swift incident handling.
What is a SIEM Engineer and what do they do?
A SIEM (Security Information and Event Management) Engineer is an IT security professional responsible for implementing, managing, and optimizing SIEM solutions to protect an organization's information systems. They collect, analyze, and monitor security data from various sources to detect suspicious activities, respond to incidents, and ensure compliance with security policies. Remote SIEM Engineers work from off-site locations, leveraging secure access and communication tools to maintain and troubleshoot SIEM platforms, analyze threat intelligence, and coordinate with security teams to enhance the organization's cybersecurity posture.
What is the difference between Siem Engineer Remote vs Security Analyst Remote?
| Aspect | Siem Engineer Remote | Security Analyst Remote |
|---|---|---|
| Required Credentials | Certifications like CISSP, CEH, or vendor-specific SIEM certifications | Certifications such as CompTIA Security+, CISSP, or GIAC certifications |
| Work Environment | Focus on configuring, managing, and optimizing SIEM tools remotely | Monitoring security alerts, analyzing threats, and incident response remotely |
| Employer & Industry Usage | Used in cybersecurity firms, large enterprises, and government agencies | Common across various industries including finance, healthcare, and tech |
Both roles involve cybersecurity but differ in focus: Siem Engineers primarily manage SIEM systems, while Security Analysts analyze security data and respond to threats. Both roles are often remote and require relevant certifications, making them closely related in the cybersecurity field.
What are popular job titles related to Siem Engineer Remote jobs in Raleigh, NC? For Siem Engineer Remote jobs in Raleigh, NC, the most frequently searched job titles are:
What job categories do people searching Siem Engineer Remote jobs in Raleigh, NC look for? The top searched job categories for Siem Engineer Remote jobs in Raleigh, NC are:
What cities near Raleigh, NC are hiring for Siem Engineer Remote jobs? Cities near Raleigh, NC with the most Siem Engineer Remote job openings:
Contractor
Posted 26 days ago
Job description
AWS Security Engineer (DevSecOps)
Location: Remote
Duration: 12 Months
Location: Remote
Duration: 12 Months
Important Notes:
* Location: Remote – anywhere in the US and need to support during EST/CST hours.
* Early submissions will receive priority consideration.
* Location: Remote – anywhere in the US and need to support during EST/CST hours.
* Early submissions will receive priority consideration.
Key Responsibilities:
* Design and implement secure AWS architectures following the AWS Well-Architected Framework (Security Pillar).
* Manage and govern IAM, SSO, KMS, CloudTrail, Config, and Security Hub.
* Design and implement secure AWS architectures following the AWS Well-Architected Framework (Security Pillar).
* Manage and govern IAM, SSO, KMS, CloudTrail, Config, and Security Hub.
Configure & Maintain AWS Native Security Services:
* GuardDuty, Macie, Inspector, Detective, WAF, Shield, and Firewall Manager.
* Build automated security policies and compliance frameworks (CIS, NIST, ISO 27001, PCI DSS).
* Implement encryption at rest and in transit, enforce TLS, and key rotation via KMS.
* Develop and run incident detection, alerting, and response workflows using EventBridge, Lambda, and SNS.
* Integrate AWS Security Hub and GuardDuty findings into SIEM platforms (Splunk, Elastic, etc.).
* GuardDuty, Macie, Inspector, Detective, WAF, Shield, and Firewall Manager.
* Build automated security policies and compliance frameworks (CIS, NIST, ISO 27001, PCI DSS).
* Implement encryption at rest and in transit, enforce TLS, and key rotation via KMS.
* Develop and run incident detection, alerting, and response workflows using EventBridge, Lambda, and SNS.
* Integrate AWS Security Hub and GuardDuty findings into SIEM platforms (Splunk, Elastic, etc.).
Systems & Infrastructure Engineering:
* Manage and secure Linux/Windows systems running on EC2, EKS, and ECS.
* Build, automate, and maintain infrastructure with Terraform, CloudFormation, or AWS CDK.
* Configure VPCs, subnets, NAT gateways, Transit Gateway, and PrivateLink for secure network segmentation.
* Implement system patching, configuration management, and OS-level hardening (CIS benchmarks).
* Design and manage backups, disaster recovery, and multi-region high availability setups.
* Automate system monitoring, logging, and remediation with CloudWatch, SSM, and Config Rules.
* Manage and secure Linux/Windows systems running on EC2, EKS, and ECS.
* Build, automate, and maintain infrastructure with Terraform, CloudFormation, or AWS CDK.
* Configure VPCs, subnets, NAT gateways, Transit Gateway, and PrivateLink for secure network segmentation.
* Implement system patching, configuration management, and OS-level hardening (CIS benchmarks).
* Design and manage backups, disaster recovery, and multi-region high availability setups.
* Automate system monitoring, logging, and remediation with CloudWatch, SSM, and Config Rules.
DevSecOps:
* Integrate security scanning and compliance checks into CI/CD pipelines (GitHub Actions, Jenkins, CodePipeline).
* Automate vulnerability management (ECR image scanning, Inspector, Trivy, or Twistlock).
* Develop infrastructure automation for identity provisioning, logging, and access control.
* Create reusable Terraform modules and templates for AWS accounts and VPCs.
* Implement infrastructure drift detection and self-healing automation.
Monitoring, Audit & Compliance:
* Implement centralized log aggregation with CloudWatch Logs, OpenSearch, or SIEM tools.
* Monitor security posture continuously via Security Hub, Config, and GuardDuty dashboards.
* Conduct regular vulnerability scans, penetration testing coordination, and security posture reviews.
* Manage audit readiness and evidence collection for compliance frameworks (SOC2, ISO27001, HIPAA).
* Develop runbooks and playbooks for incident response and operational processes.
Preferred Qualifications:
* AWS Certified Security – Specialty (strongly preferred).
* Experience with multi-account AWS Organizations, Control Tower, and Service Control Policies (SCPs).
* Knowledge of container security (EKS, ECS, Bottlerocket, Karpenter).
* Experience with SIEM/SOAR integrations and automated incident response.
* Exposure to Zero Trust and Network Segmentation design principles.
* Integrate security scanning and compliance checks into CI/CD pipelines (GitHub Actions, Jenkins, CodePipeline).
* Automate vulnerability management (ECR image scanning, Inspector, Trivy, or Twistlock).
* Develop infrastructure automation for identity provisioning, logging, and access control.
* Create reusable Terraform modules and templates for AWS accounts and VPCs.
* Implement infrastructure drift detection and self-healing automation.
Monitoring, Audit & Compliance:
* Implement centralized log aggregation with CloudWatch Logs, OpenSearch, or SIEM tools.
* Monitor security posture continuously via Security Hub, Config, and GuardDuty dashboards.
* Conduct regular vulnerability scans, penetration testing coordination, and security posture reviews.
* Manage audit readiness and evidence collection for compliance frameworks (SOC2, ISO27001, HIPAA).
* Develop runbooks and playbooks for incident response and operational processes.
Preferred Qualifications:
* AWS Certified Security – Specialty (strongly preferred).
* Experience with multi-account AWS Organizations, Control Tower, and Service Control Policies (SCPs).
* Knowledge of container security (EKS, ECS, Bottlerocket, Karpenter).
* Experience with SIEM/SOAR integrations and automated incident response.
* Exposure to Zero Trust and Network Segmentation design principles.