back to job search
  • Location: Austin
  • Remote: Remote
  • Type: Contract
  • Job #20252

Security SIEM Optimization Consultant (CrowdStrike Focus)

This engagement focuses on optimizing a large-scale security monitoring environment built on CrowdStrike SIEM and associated services. The consultant will enhance detection, monitoring, and response capabilities by expanding telemetry, integrating additional log sources, and improving visibility through dashboards and reporting.

The role will contribute to strengthening overall security posture by increasing endpoint visibility, improving signal quality, and enabling more effective threat detection and response.

Key Objectives:

  • Expand and optimize SIEM telemetry coverage
  • Integrate additional high-value log sources
  • Improve dashboards for both operational teams and leadership
  • Enhance detection accuracy and monitoring effectiveness
  • Provide clearer insights into endpoint risk and security performance

Responsibilities:

  • Evaluate current SIEM configuration, telemetry coverage, and data ingestion
  • Enable and fine-tune telemetry to improve visibility and reduce noise
  • Identify and onboard new high-value log sources
  • Design and enhance dashboards aligned with SOC and leadership needs
  • Support implementation and adoption of additional CrowdStrike capabilities
  • Validate data quality, normalization, and correlation within the SIEM
  • Collaborate with cross-functional teams including security and IT operations
  • Identify gaps, risks, and opportunities for improving detection and monitoring
  • Provide regular status updates and executive-level reporting
  • Develop documentation and recommendations to support ongoing improvements

Deliverables:

  • Summary of work performed and capabilities delivered
  • Documentation for telemetry configuration, log integrations, and dashboards
  • Demonstrated improvements in visibility, detection, and monitoring
  • Strategic recommendations for future enhancements

Required Qualifications:

  • 8+ years of experience in documentation, reporting, and knowledge transfer
  • 8+ years of experience engaging stakeholders and communicating with executives
  • 8+ years of experience in SIEM detection engineering and alert tuning
  • 8+ years of experience with log integration and data normalization
  • 3+ years of hands-on experience with CrowdStrike SIEM and dashboard development

Preferred Qualifications:

  • 5+ years of broader SIEM platform and dashboard development experience

#TECHIND

Attach a Resume file. Accepted file types are DOC, DOCX, PDF, HTML, and TXT.
Review our Privacy Policy for more information.

We are uploading your application. It may take a few moments to read your resume. Please wait!