Cybersecurity Engineer, Managed SIEM

• *Who We Are** Ready to make a real impact in cybersecurity? At Critical Start, we're not just protecting organizations; we're redefining how it's done. We're a team united by an inspiring purpose: to stop breaches, simplify security, and shape the future of cyber defense. If you're passionate about cutting-edge technology, thrive in a collaborative environment, and want your work to truly matter, you've found your home. We deliver 24x7 AI-accelerated, human-validated detection, investigation, and response across IT and OT. This means we cut through the noise, investigate real threats, and take trusted, SLA-backed action—all powered by the brightest minds and the latest AI. Since 2012, we've been helping organizations outpace evolving attacks with faster response , fewer escalations, and measurable risk reduction. Innovation isn't just a buzzword here; it's our DNA. We pioneered the first MOBILESOC app for on-the-go detection and response, infused AI into automated alert resolution to eliminate noise, and slashed investigation time by an astounding 99.3%. We're transforming how security teams work, and you could be a part of it. From AI-assisted triage to analyst copilots that elevate human expertise , we combine machine intelligence with human judgment to deliver outcomes our customer’s trust. If you're looking for a high-trust, high-impact team where your ideas are amplified by AI and valued by colleagues and customers alike, Critical Start is the place for you. Come build the future of cybersecurity with us. Want to hear from our team? Watch these videos to gain insights into life at Critical Start or check out our Glassdoor reviews for an inside look. • *Who You Are** We are searching for a dedicated and proficient Cybersecurity Engineer to join our Managed Security Services team. The perfect candidate should have extensive knowledge of Security Information and Event Management (SIEM) tools, including Microsoft Sentinel, Splunk, and Sumo Logic. As a Cybersecurity Engineer, you will have a vital role in providing managed security services to our clients, guaranteeing the smooth operation of their security infrastructure. • *What You Will Be Doing?** • Skills Maintenance: Keep your industry knowledge up-to-date by maintaining deep expertise in SIEM tools. • Client Interaction: Deliver our managed services to clients efficiently, working on project-based tasks related to SIEM technologies. Collaborate closely with clients to address technical issues, provide value reports, and configure their systems effectively. • Technical Guidance: Offer technical guidance, expertise, and configuration support to clients, helping them maintain strong and efficient SIEM security programs. • Best Practices: Assist clients in implementing best practices for deploying and configuring endpoint agents, endpoint security policies, log forwarders, data sources, content, and alerts. • Security Enhancement: Assist clients in enhancing the security of their SIEM products, ensuring alignment with industry standards and our program offerings. • Issue Resolution: Troubleshoot problems related to data source interactions with SIEM technologies and API connections between supported security integrations and our platform (CORR). • Automation Opportunities: Identify chances to automate parts of SIEM engineering tasks to improve efficiency and accuracy. • Documentation Management: Create and update extensive security documentation, encompassing playbooks, standard operating procedures, and training materials. • Ongoing Education: Keep abreast of the latest security threats and trends, integrating this knowledge into our security solutions. Attain and maintain relevant security certifications. • Collaborative Teamwork: Work closely with fellow cybersecurity engineers, product managers, and architects to devise and implement innovative security solutions that offer the highest level of protection for our clients. • *What You Will Bring?** • *Required Qualifications:** • Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or an equivalent field, or equivalent experience and industry certifications. • 3+ years of experience with SIEM tools ( Splunk, Microsoft Sentinel, Sumo Logic, or Devo). • Familiarity with various security data sources, log formats, and ingestion methods. • Experience in creating SIEM content, including alerts, reports, and dashboards. • Excellent communication and customer service skills. • 1+ years of experience with any EDR/XDR solution. • Ability to establish rapport and trust with customers, even in discussions about complex technical issues. • Proficient in troubleshooting technical issues related to security products. • *Desired Qualifications:** • 3+ years of experience with Cloud Technologies