SOC SIEM/Cloud Engineer
๐Tennessee, United States ๐บ๐ธ
โฑ๏ธ full-time
๐งโโ๏ธ mid-level
๐ฐ 80001
remote
Location REMOTE WORK, TN, US
Date Posted 2025-08-05
Category Cyber
Subcategory Cybersecurity Spec
Schedule Full-time
Shift Day Job
Travel No
Minimum Clearance Required None
Clearance Level Must Be Able to Obtain Secret
Potential for Remote Work Yes
Description
We provide advanced cybersecurity monitoring and engineering support to a wide range of government agencies through a multi-tenant MSS model. Our Security Operations Center (SOC) operates 24/7, leveraging Microsoft Sentinel as the core SIEM platform. However, we increasingly support hybrid and multi-cloud environments including AWS and Splunk, and we are seeking a cloud-savvy SIEM engineer to help us grow and maintain secure, scalable monitoring capabilities.
As a SOC SIEM/Cloud Engineer, you will serve as one of the primary engineers for multi-cloud SIEM operations in a managed security services environment. While Microsoft Sentinel remains our core SIEM platform, you will also support AWS-native security tooling and Splunk-based environments. This role emphasizes cross-cloud log ingestion, automation, and security detection engineering. Candidates must be self-directed, security-minded, and comfortable designing scalable monitoring strategies across diverse architectures.
This is a remote position, but Secret clearance eligibility is required to support future classified operations, as needed.
Key Responsibilities
SIEM Operations & Cloud Integration
- Administer and optimize SIEM platforms including Microsoft Sentinel, Splunk, and AWS-native tools such as CloudWatch, CloudTrail, GuardDuty, and Security Hub.
- Manage log ingestion pipelines from hybrid, cloud, and containerized environments.
-
Design alert rules, detection use cases, and enrichment pipelines using KQL, SPL, and JSON-based event structures.
- Build and maintain automation workflows using Azure Logic Apps, Splunk SOAR, and AWS Lambda/Step Functions.
- Integrate threat intelligence, reputation feeds, and context enrichment across cloud platforms.
-
Partner with SOC analysts to streamline Tier 1-2 response efforts through smart automation.
- Act as the subject matter expert on cloud security logging and architecture for Azure, AWS, and hybrid environments.
- Advise customers and internal teams on best practices for telemetry, logging policy, and compliance alignment (e.g., FedRAMP, CJIS, NIST 800-53).
-
Lead or support onboarding of cloud workloads including EC2, EKS, Lambda, Azure VMs, Kubernetes, and M365/GCC environments.
Required Qualifications
- Bachelorโs degree in Cybersecurity, Computer Science, Information Technology, or related field
- 3-5+ years of SIEM engineering experience across multi-cloud environments (Azure, AWS)
- Hands-on experience with Microsoft Sentinel, AWS Security Services, and Splunk
- Experience creating alerts and detection rules in KQL, SPL, and JSON-based formats
- Familiarity with automation tools such as Logic Apps, Splunk SOAR, AWS Lambda, or Step Functions
- Strong scripting knowledge (PowerShell, Python, or Bash)
-
Must be a U.S. citizen and clearable to the Secret level
- Active Secret clearance or higher
- Microsoft Certifications SC-200, AZ-500
- AWS Certifications Security Specialty, Solutions Architect Associate or Pro
- Splunk Certifications Admin, Power User
- Experience with cloud container security (EKS, AKS, Kubernetes auditing)
- Experience in multi-tenant MSSP environments or government contracts
-
Familiarity with large language models (LLMs), GenAI, or agentic AI frameworks for use in cybersecurity operations
- Fully remote work with flexibility and work-life balance
- Opportunity to contribute to classified operations with additional clearance
- Competitive compensation and benefits
- Training and certification assistance
-
Stable, mission-driven cybersecurity work supporting state and federal government agencies
Senior Embedded Software Engineer
@ Embedd 
What we're looking for
At embedd.it, we power hardware-software integration in embedded devices. We turn fragmented semiconductor chip data into configurable digital twins, then deterministically generate code, tests, and documentation โ making integration faster, cheaper, and resilient to supply chain shocks.
Weโre looking for a true legend โ someone with abstract thinking and deep expertise in low-level software development. Youโll build vendor-agnostic tooling for MCU and peripheral integration to solve hardware-software integration once and for all. We work at the intersection of embedded systems, code generation, compilers, and machine learning. Itโs your chance to help redefine how low-level development is done.
Responsibilities
- Drive the architecture of the driver structures and system layout
- Define scalable patterns for cross-architectural integration across bare-metal, Zephyr, Linux, and other environments
- Deconstruct complex SoC device trees and translate hardware descriptions into structured internal models for automated reasoning
- Partner with the ML team to shape data and annotation models for AI-driven data-extraction tooling
Qualifications
- 5+ years of experience in embedded systems development, including bare-metal and RTOS-based systems
- Proficiency in C/C++
- Familiarity with firmware configuration, SoC bring-up, and system-level debugging
- Hands-on experience with code generation tools, or low-level compiler/decompiler/emulator technologies
- Strong background in embedded toolchains: compilers, linkers, debuggers, and build systems
- Python or scripting for automation and tooling is a plus
- Experience with functional-safety standards is a plus
Why embedd.it?
- Dynamic, venture-backed team of engineers challenging the status quo ๐
- Work at the intersection of embedded systems, code generators, compilers, and ML ๐ค
- Unusual challenges requiring out-of-the-box abstract thinking ๐ง
- Competitive compensation: cash + equity ๐ฐ
- Remote work possible ๐
About Us
embedd.it is a UK-based startup reinventing embedded development. Our platform transforms unstructured semiconductor data into structured digital twins, enabling automatic generation of drivers, tests, and documentation. We're building a single, traceable source of truth to make integration fast, vendor-agnostic, and future-proof.
Other similar jobs
GPU SW Engineer
@ Huawei Technologies Research & Development (UK) Ltd, ๐United States ๐บ๐ธ
Alternance - Ingรฉnieure/Ingรฉnieur "Edge Computing"
@ EDF, ๐United States ๐บ๐ธ
SOC Engineer
@ Hitachi Digital, ๐United States ๐บ๐ธ
Embedded Cyber Security Engineer
@ AeroVironment, ๐United States ๐บ๐ธ
Embedded Controls Engineer
@ Actalent, ๐United States ๐บ๐ธ
Embedded Systems Engineer
@ Allied OneSource, ๐United States ๐บ๐ธ
Embedded RTOS Lead Engineer
@ Carrier, ๐United States ๐บ๐ธ
Embedded RTOS Engineer
@ Carrier, ๐United States ๐บ๐ธ
Embedded Engr I
@ Honeywell, ๐United States ๐บ๐ธ
Technical Lead Engineer, Embedded Systems
@ Lam Research, ๐United States ๐บ๐ธ
-
Employment
โฑ๏ธ full-time
-
Experience
๐งโโ๏ธ mid-level
-
Salary
๐ฐ 80001
-
Working model
remote
-
Skills
-
Industry
-
Find similar jobs
GPU SW Engineer
@ Huawei Technologies Research & Development (UK) Ltd, ๐United States ๐บ๐ธ
Alternance - Ingรฉnieure/Ingรฉnieur "Edge Computing"
@ EDF, ๐United States ๐บ๐ธ
SOC Engineer
@ Hitachi Digital, ๐United States ๐บ๐ธ
Embedded Cyber Security Engineer
@ AeroVironment, ๐United States ๐บ๐ธ
Embedded Controls Engineer
@ Actalent, ๐United States ๐บ๐ธ
Embedded Systems Engineer
@ Allied OneSource, ๐United States ๐บ๐ธ
Embedded RTOS Lead Engineer
@ Carrier, ๐United States ๐บ๐ธ
Embedded RTOS Engineer
@ Carrier, ๐United States ๐บ๐ธ
Embedded Engr I
@ Honeywell, ๐United States ๐บ๐ธ
Technical Lead Engineer, Embedded Systems
@ Lam Research, ๐United States ๐บ๐ธ