Information Security Lead - Senior SIEM Engineer (Remote)

Information Security Lead - Senior SIEM Engineer (Remote)

At TE, you will unleash your potential working with people from diverse backgrounds and industries to create a safer, sustainable and more connected world.

Job Overview

As a Senior SIEM Engineer, you will be a key member of our collaborative security team, working alongside other security professionals to protect our organization from sophisticated cyberattacks. You will be able to drive innovation in our SIEM program, leveraging your expertise to develop advanced detection methods and improve our overall security posture.

Key Responsibilities :

SIEM Engineering & Development : Design, develop, implement, and optimize advanced correlation rules, use cases, and detection logic within the enterprise SIEM platform.

Log Source Management : Architect and maintain robust log ingestion pipelines from diverse security and IT systems, ensuring comprehensive data collection, normalization, and parsing.

Threat Detection & Analysis : Develop and refine high-fidelity security alerts, dashboards, and reports to enhance threat identification, reduce false positives, and provide actionable insights.

Security Operations Collaboration : Collaborate closely with the Security Operations Center (SOC) to optimize response workflows, improve threat detection capabilities, and provide expert-level support during security incidents.

Threat Intelligence & Proactive Hunting : Maintain expertise in emerging threats, attack techniques, and security best practices. Proactively hunt for advanced threats and develop new detection methods based on threat intelligence and adversary tactics, techniques, and procedures (TTPs).

Automation & Scripting : Automate SIEM tasks, workflows, and integrations using scripting languages (e.g., Python, PowerShell) to improve efficiency and scalability.

Documentation & Knowledge Sharing : Develop and maintain comprehensive SIEM documentation, including system architecture diagrams, data flow diagrams, log source configurations, alert rationale, and incident response procedures. Mentored and provided technical guidance to junior security analysts.

SIEM Architecture & Strategy : Contribute to the long-term vision and roadmap for SIEM and threat detection capabilities. Identify gaps and opportunities for improvement in existing detection strategies and recommend solutions.

Collaboration & Communication : Effectively communicate technical concepts to technical and non-technical audiences. Interface with other IT teams (network, systems, application development, etc.) to ensure security is integrated throughout the infrastructure.

Strategic Planning & Budgeting : Collaborate with leadership on strategic planning, budget forecasting, and resource allocation for SIEM-related initiatives.

What your background should look like :

Required Qualifications :

Bachelor's degree in Computer Science, Information Security, a related field, or equivalent practical experience.

Minimum of 5-7 years of experience in information security, with a strong focus on SIEM administration, engineering, and security operations.

Significant experience with at least one enterprise-grade SIEM platform (e.g., Devo, Splunk, QRadar, Sentinel, ArcSight).

Expert-level knowledge of SIEM architecture, design, implementation, and administration.

Deep understanding of log management principles, log formats, and data normalization techniques.

Proficiency in developing advanced correlation rules, use cases, and detection logic within an SIEM platform.

Experience with scripting languages (e.g., Python, PowerShell, Regular Expressions) for automation and data manipulation.

Familiarity with various operating systems (Windows, Linux, macOS) and cloud platforms (AWS, Azure, GCP).

Knowledge of common security frameworks and standards (e.g., NIST, MITRE ATT&CK, CIS).

Experience with threat intelligence platforms and data feeds.

Preferred Qualifications :

Experience with Devo, Devo SOAR, and / or LogicHub

Advanced programming / coding in one or more languages (C#, Python, etc).

Understanding of security concepts, including network security, endpoint security, intrusion detection / prevention systems (IDS / IPS), firewalls, and vulnerability management.

Manufacturing and / or engineering industry experience.

Experience working in a large global organization.

Education Required / Desired :

Undergraduate degree in business, computer science, management information systems, or other equivalent work experience.

Competencies

Values : Integrity, Accountability, Inclusion, Innovation, Teamwork

COMPENSATION

• Competitive base salary commensurate with experience : $131,100 - $196,700 (subject to change dependent on physical location)
• Posted salary ranges are made in good faith. TE Connectivity reserves the right to adjust ranges depending on the experience / qualification of the selected candidate as well as internal and external equity.
• Total Compensation = Base Salary Incentive(s) Benefits

BENEFITS

EOE, Including Disability / Vets

Location :

Middletown, PA, US, 17057

City : Middletown

State : PA

Country / Region : US

Travel : Less than 10%

Requisition ID : 129334

Alternative Locations :

Function : Information Technology

TE Connectivity and its subsidiaries, affiliates, and operating units (collectively, the "Company") is committed to providing a work environment that prohibits discrimination on the basis of age, color, disability, ethnicity, marital status, national origin, race, religion, gender, gender identity, sexual orientation, protected veteran status, disability or any other characteristics protected by applicable law or regulation.

Salary : $131,100 - $196,700