SIEM Engineer

Be Challenged and Make a Difference In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture. Description of Task to be Performed: AnaVation is seeking an experienced SIEM (Security Information and Event Management) Engineer to provide support to a mission critical customer. The selected candidate will be responsible for the design, deployment, configuration, and maintenance of SIEM systems across multiple classification enclaves. Key Responsibilities · Support the architecture, engineering, optimization, and sustainment of Security Information and Event Management (SIEM) platforms supporting defensive cyber operations, advanced threat detection, incident response, and compliance initiatives · Perform configuration, management and maintenance of network firewalls, security and encryption devices, including IDS, NAC and SIEM systems. · Integrate diverse log sources including firewalls, IDS/IPS, EDR, servers, network devices, security appliances, and cloud environments. · Optimize SIEM performance, storage architecture, data retention policies, and system scalability. This position is on site with the customer in Washington, DC and cannot be supported remotely. The selected candidate must possess an active TS clearance with the ability to obtain SCI accesses. Candidates without an active TS cannot be considered. Benefits         Generous cost sharing for medical insurance for the employee and dependents         100% company paid dental insurance for employees and dependents         100% company paid long-term and short-term disability insurance         100% company paid vision insurance for employees and dependents         401k plan with generous match and 100% immediate vesting         Competitive Pay         Generous paid leave and holiday package         Tuition and training reimbursement         Life and AD&D Insurance About AnaVation AnaVation is the leader in solving the most complex technical challenges for collection and processing in the U.S. Federal Intelligence Community. We are a US owned company headquartered in Chantilly, Virginia. We deliver groundbreaking research with advanced software and systems engineering that provides an information advantage to contribute to the mission and operational success of our customers. We offer complex challenges, a top-notch work environment, and a world-class, collaborative team. If you want to grow your career and make a difference while doing it, AnaVation is the perfect fit for you! AnaVation is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law. Required Qualifications: 6+ years of cybersecurity experience, with at least 5 years focused on SIEM engineering in enterprise environments. Experience supporting federal government systems at multiple security levels, strong knowledge of federal cybersecurity frameworks, and the ability to provide technical support within a secure environment. Hands-on experience with one or more enterprise SIEM platforms. Experience engineering and sustaining SIEM solutions in classified or air-gapped environments. Familiarity with cross-domain solutions and secure data transfer controls. Strong expertise in: Log normalization and parsing Advanced correlation rule development Threat detection engineering Network protocols and traffic analysis Windows and Linux security logging Active TS clearance with the ability to obtain SCI accesses. Preferred Qualifications: Bachelor’s degree in Information Technology, Computer Science, Information Systems or related field Proficiency in scripting/automation (Python, PowerShell, Bash). Deep understanding of MITRE ATT&CK and threat detection methodologies. Demonstrated ability to work independently and lead technical initiatives in highly regulated environments. Knowledge of Zero Trust architecture principles. Relevant certifications such as GIAC (GCIA, GCIH, GCED) or CISSP a plus, but not required.

{
  "content_hash": "3bdee66a2aca7edeb44e68281626241b95de5d24a6935c056e86d0f35577bc04",
  "source_hash": "b1319d4a40b2d9e4f0a23cb32f27209b8052b35f75a2939617f84edef921b469",
  "last_changed_at": "2026-05-29T07:09:13.127Z",
  "active_status": "active"
}

{
  "language": "en",
  "location": {
    "raw": "Washington, DC",
    "city": "Washington",
    "region": "DC",
    "country": "United States",
    "is_remote": false,
    "confidence": 0.9
  },
  "salary_max": null,
  "salary_min": null,
  "inferred_at": "2026-06-06T07:57:21.655Z",
  "launch_scope": {
    "reason": "english_us_canada",
    "included": true,
    "language": "en",
    "location": {
      "raw": "Washington, DC",
      "city": "Washington",
      "region": "DC",
      "country": "United States",
      "is_remote": false,
      "confidence": 0.9
    },
    "countries": [
      "United States"
    ]
  },
  "remote_policy": null,
  "salary_period": null,
  "workplace_type": "on_site",
  "salary_currency": null
}

{}

{
  "lists": [
    {
      "text": "Required Qualifications:",
      "content": "<li>6+ years of cybersecurity experience, with at least 5 years focused on SIEM engineering in enterprise environments.</li><li>Experience supporting federal government systems at multiple security levels, strong knowledge of federal cybersecurity frameworks, and the ability to provide technical support within a secure environment.</li><li>Hands-on experience with one or more enterprise SIEM platforms.</li><li>Experience engineering and sustaining SIEM solutions in classified or air-gapped environments.</li><li>Familiarity with cross-domain solutions and secure data transfer controls.</li><li>Strong expertise in:</li><li>Log normalization and parsing</li><li>Advanced correlation rule development</li><li>Threat detection engineering</li><li>Network protocols and traffic analysis</li><li>Windows and Linux security logging</li><li>Active TS clearance with the ability to obtain SCI accesses.</li>"
    },
    {
      "text": "Preferred Qualifications:",
      "content": "<li>Bachelor’s degree in Information Technology, Computer Science, Information Systems or related field</li><li>Proficiency in scripting/automation (Python, PowerShell, Bash).</li><li>Deep understanding of MITRE ATT&amp;CK and threat detection methodologies.</li><li>Demonstrated ability to work independently and lead technical initiatives in highly regulated environments.</li><li>Knowledge of Zero Trust architecture principles.</li><li>Relevant certifications such as GIAC (GCIA, GCIH, GCED) or CISSP a plus, but not required.</li>"
    }
  ],
  "country": "US",
  "createdAt": 1772489064009,
  "updatedAt": null,
  "categories": {
    "team": "Federal Law Enforcement",
    "location": "Washington, DC",
    "commitment": "Full Time",
    "department": "AnaVation Job Opportunities",
    "allLocations": [
      "Washington, DC"
    ]
  },
  "salaryRange": null,
  "workplaceType": "onsite"
}