Support application and platform teams in identifying security relevant events, defining event criticality, and ensuring required event details are captured
Assist with onboarding application and infrastructure logs into the centralized SIEM platform
Guide teams on log configuration requirements aligned with enterprise logging standards and verify successful ingestion, parsing, and data quality
Review logging compliance surveys and partner with application teams to address gaps and support remediation
Collaborate with teams to complete annual logging attestations and compliance activities
Validate that security controls and critical applications produce required log events to support detection and response use cases
Identify opportunities to automate logging, onboarding, validation, and compliance processes to improve efficiency and consistency
Maintain and administer Red Hat Enterprise Linux servers that support centralized logging pipelines
Develop and maintain lightweight scripts to streamline log onboarding, enrichment, validation, and reporting workflows
Partner with CyberDefense, Platform, Application, and Infrastructure teams to strengthen cross team collaboration and observability maturity

Entry level experience or academic exposure to programming or scripting
Working knowledge of Linux operating systems with comfort using the command line and basic shell scripting
Foundational understanding of log forwarding, collection, and parsing technologies such as rsyslog or nxlog
Must have a couple of years coding/programming experience with any language (preferred language is Python) but open to .Net or Java coding experience
Strong collaboration, communication, and documentation skills
Bachelor’s degree in Computer Science or a related field, or equivalent experience

Security Engineer – Logging and Monitoring

Key skills