28 days old

SIEM Engineer

SageNet, LLC.
Tulsa, OK 74103
  • Job Code

Remote within the United States


SageNet is a managed network and cybersecurity services firm. Our relationship-driven approach and holistic Connect-Manage-Protect process set us apart. We deliver creative solutions built-on best-of-breed technology and with built-in cybersecurity, backed by world-class service and support.

SageNet operates three US-based 24/7 NOCs/SOCs, a National Logistics Center, and a nationwide field service organization. We are proud to manage communications at more than 160,000 locations for our loyal, long-term customer base.


SageNet is seeking an experienced Security Information and Event Management (SIEM) Engineer who will be responsible for the deployment, configuration, and day-to-day management of customer SIEM environments in a 24x7x365 managed security services environment. The SIEM engineer must be able to analyze, troubleshoot, remediate, and create content within the client SIEM environments. The SIEM Engineer will work closely with both the SageNet Cybersecurity engineering and analysis teams, as well as the client IT teams, to ensure that the SIEM is configured correctly and performing to service expectations.


  • Demonstrated integrity in a professional environment

  • Deep understanding of networking, systems management, and multiple security technologies and concepts

  • Deep understanding of SIEM deployment methodology and use cases

  • Comfortable working in a Linux shell to perform installations, upgrades, and troubleshoot problems for the OS and installed application stacks

  • Extensive understanding of data normalization and correlation methods and concepts

  • Excellent social, communication, and technical writing skills


  • 4+ years IT Security operations experience required

  • 2+ years experience operating and deploying SIEM technologies in medium and large-scale corporate networks required

  • Experience creating and maintaining technical documentation required

  • Experience deploying and configuring Enterprise SIEM Toolsets (Splunk, QRadar, ArcSight, etc.) preferred

  • Experience with Elastic ELK (Elasticsearch, Kibana, Logstash) preferred

  • Experience with Splunk engineering, implementation, and content development preferred

  • Experience with scripting languages such as bash or python preferred

  • Experience with Amazon Web Services highly desired

  • AWS Associate or Professional Certifications highly desired

  • Splunk Professional Certifications highly desired


  • Productively work in a corporate office space as well as remotely

  • Business casual work environment

  • Standard daytime working hours

  • Travel required up to 25%


  • Be able to sit or stand for long periods of time

  • Occasionally must lift/carry 20 lbs.

  • Extensive use of hands and fingers for typing

  • Extensive use of eyes in reviewing paper documents or a computer screen




Full Time


  • Up to 25%

  • Domestic only

  • Could include days, nights, and weekend travel



Attention All Third-Party Agencies, Headhunters, and Recruiters
SageNet will not accept candidate submission by unsolicited third parties through this site or any company email address. All unsolicited candidates presented to SageNet will be considered the property of SageNet. SageNet will not be responsible for any fees associated with unsolicited candidates, nor will a contractual relationship be formed by the submission. SageNet is not obligated and will not under any circumstances pay any fees to said third parties submitting candidates in this manner. SageNet only forms contracts with recruiters with whom we have an established business relationship and with whom we have in place a signed agreement. All contact with SageNet from third parties must be through our Talent Acquisition Department. Any contact made outside of the SageNet Talent Acquisition Department by a third party will cancel any future business relationships between the third party and SageNet.

Please contact Katie.Halstead@SageNet.com for any questions.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractors legal duty to furnish information. 41 CFR 60-1.35(c)


Posted: 2021-11-11 Expires: 2021-12-10
Sponsored by:
ADP Logo
Sponsored by:
Bank of America Logo

Featured Jobs[ View All ]

Featured Employers

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

SIEM Engineer

SageNet, LLC.
Tulsa, OK 74103

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast