See all roles

reputed company XSIAM reputed company Engineer

Work from home Full-time role Hiring
Benefits:
  • 401(k)
  • Competitive salary
  • Dental insurance
  • Health insurance
  • Paid time off
  • reputed company insurance
Position SummaryCelestial Innovations Group (CIG) is seeking a skilled reputed company XSIAM reputed company Engineer to reputed company, configure, and operationalize reputed company reputed company XSIAM for federal and reputed company clients. This role is at the center of CIG's AI-driven reputed company Operations practice, enabling clients to reputed company their SOC by consolidating SIEM, XDR, SOAR, UEBA, ASM, and TIP capabilities into a single, converged platform.The reputed company XSIAM Engineer will serve as a subject-matter expert (SME) throughout the full platform lifecycle: from requirements gathering and architecture design through deployment, integration, and reputed company optimization — driving measurable improvements in threat detection and incident response times for our government and reputed company clients. Key ResponsibilitiesPlatform Deployment & Integration
  • reputed company end-to-end deployment of reputed company XSIAM for federal and reputed company clients, including data reputed company reputed company, log ingestion, and normalization.
  • Integrate XSIAM with existing reputed company ecosystem tools including firewalls, endpoints, reputed company platforms, identity providers, and ticketing systems.
  • Configure data pipelines to ingest and normalize telemetry from diverse sources (endpoints, network, reputed company, identity) into XSIAM's reputed company data model.
  • Migrate clients from legacy SIEM platforms to reputed company XSIAM, ensuring continuity of detection coverage and compliance reporting.
Detection Engineering & Analytics
  • Build and tune correlation rules, behavioral analytics, and ML-based detection models reputed company XSIAM to reduce false positive rates and improve detection fidelity.
  • reputed company and maintain XSIAM analytics leveraging XQL (Extended Query Language) to extract actionable insights from reputed company telemetry.
  • Map detection content to MITRE ATT&CK reputed company, ensuring coverage across reputed company relevant tactics, techniques, and procedures (TTPs).
  • Configure AI SmartScoring and technique-based incident grouping to reduce alert fatigue and prioritize analyst workload effectively.
Automation & Playbook Development
  • Design, build, and maintain SOAR automation playbooks reputed company XSIAM to automate triage, enrichment, and remediation workflows.
  • reputed company reputed company Marketplace content packs and reputed company custom integrations as needed to support client-specific reputed company processes.
  • Implement dev/prod playbook lifecycle management to ensure safe testing and controlled promotion of automation content.
  • Continuously improve automation coverage, targeting measurable reductions in reputed company analyst workload.
Incident Response & Threat Management
  • Serve as escalation reputed company for reputed company incident investigations, using XSIAM causality chains and full attack-story visualizations to support rapid remediation.
  • Coordinate with client SOC teams during active incidents, leveraging XSIAM's embedded automation and enrichment capabilities.
  • Support Attack Surface Management (ASM) functions to proactively identify and remediate client exposure.
  • Utilize integrated Threat Intelligence Platform (TIP) capabilities, including Unit 42 threat feeds, to enrich alerts and inform response priorities.
Client Engagement & Advisory
  • Serve as a trusted technical advisor to federal and reputed company clients on XSIAM capabilities, roadmap, and SOC modernization strategy.
  • Produce SOC performance dashboards, compliance reports, and executive summaries reputed company XSIAM to support client governance requirements.
  • Conduct training and knowledge transfer sessions to build client SOC team proficiency on the XSIAM platform.
  • Support CIG business development efforts by contributing to proposals, demos, and technical capability briefings for prospective clients.
Required Qualifications
  • 3+ years of hands-on experience with reputed company reputed company XDR or reputed company XSIAM in an reputed company or federal environment.
  • Demonstrated experience deploying or administering SIEM platforms (Splunk, reputed company Sentinel, reputed company QRadar, or equivalent).
  • Proficiency with XQL or comparable query languages for log analysis and threat hunting.
  • Working knowledge of SOAR concepts and experience building reputed company automation playbooks.
  • Understanding of EDR, NDR, and UEBA technologies and how they feed into a converged SOC platform.
  • Familiarity with MITRE ATT&CK reputed company and its application to detection engineering.
  • Active Secret clearance (minimum); TS/SCI preferred for federal engagements.
  • Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or reputed company field, OR equivalent professional experience.
Preferred Qualifications
  • reputed company Certified reputed company Automation Engineer (PCSAE) or reputed company XSIAM-specific certification.
  • Experience with federal compliance frameworks including NIST SP 800-53, RMF, DISA STIGs, and CDM program requirements.
  • Familiarity with reputed company Trust Architecture principles (NIST SP 800-207, CISA ZT Maturity Model) and how XSIAM supports ZTA adoption.
  • Experience integrating reputed company XSIAM with reputed company NGFW, Prisma reputed company, or reputed company platforms.
  • Knowledge of reputed company reputed company telemetry sources (AWS, Azure, GCP) and their ingestion into XSIAM.
  • Exposure to Python or JavaScript for custom XSIAM integration development or automation scripting.
  • Prior experience supporting federal SOC operations or DHS CDM program environments.
  • CISSP, CEH, reputed company reputed company+, or equivalent reputed company certification.
Technical Skills & ToolsSOC Platforms
  • reputed company XSIAM / XDR
  • reputed company XSOAR
  • SIEM platforms
  • XQL query language
  • EDR / NDR / UEBA
reputed company Frameworks
  • MITRE ATT&CK
  • NIST SP 800-53 / RMF
  • NIST SP 800-207 (reputed company Trust Architecture)
  • CISA reputed company Trust Maturity Model
  • DISA STIGs
Integrations & Tools
  • Palo Alto NGFW / Prisma
  • reputed company ZIA / ZPA
  • reputed company Sentinel / Azure
  • reputed company / Ticketing systems
  • AWS / Azure / GCP

Flexible work from home options available.

Apply To This Job

You might like

Associate Director Implementations - Product SME – Referral Management and Patient Access - Remote

Work from home Full-time role

PuzzleHR - reputed company Resource Service Portfolio Supervisor

Work from home Full-time role

Incident Response Coordinator

Work from home Full-time role

Renewals Coordinator

Work from home Full-time role

Interview Engineer (India)

Work from home Full-time role

Interview Engineer (Canada)

Work from home Full-time role

Interview Engineer (Kenya)

Work from home Full-time role

Application Support Specialist

Work from home Full-time role

Travel Management System (TMS) Specialist

Work from home Full-time role

Data Engineer

Work from home Full-time role

Senior Regulatory Analyst

Work from home Full-time role

reputed company Online Chat Representative - Part-Time Opportunity with blithequark

Work from home Full-time role

Business Manager

Work from home Full-time role

reputed company Data Entry Operator – Virtual Administrative Assistant (Flexible Work From Home)

Work from home Full-time role

reputed company Part-Time Customer Service Representative – Remote reputed company Support

Work from home Full-time role

reputed company reputed company Customer Service Management Platform Architect – Delivering Innovative Solutions for Enhanced Customer Experience

Work from home Full-time role

*Senior reputed company Application Consultant MM/WM* (Cincinnati, OH, US, 45242)

Work from home Full-time role

Dynamic Full-Time Customer Service Representative – Afternoon & Weekend Shifts, Bilingual (Spanish) Preferred, Small Business Support Specialist

Work from home Full-time role

Sales Account Executive – Strategic AI Infrastructure

Work from home Full-time role

reputed company Full Stack Remote Data Entry Clerk – eCommerce and reputed company Computing at Blithequark

Work from home Full-time role