Return To Search

SIEM Engineer

Location: Austin, TX

Job Type: contract

Company: IDR

Category: Security

Job Description Apply Now


IDR is seeking a highly skilled an experienced SIEM Engineer to join one of our top clients in the public sector industry. If you are looking for an opportunity to join a large organization and work within a team-oriented culture, please apply today!
 
Position Overview/Responsibilities for the SIEM Engineer:
• Design and develop secure software components, APIs, and microservices to support penetration testing workflows and security automation.
• Build custom integrations between penetration testing platforms, vulnerability scanning tools, and enterprise SIEM platforms.
• Develop data ingestion pipelines to normalize and forward security telemetry into Splunk and other SIEM platforms.
• Create automation scripts to orchestrate security testing, evidence collection, and reporting processes.
• Support integration of security testing results into governance, risk, and compliance (GRC) platforms.
Penetration Testing Enablement
• Build and maintain Kali Linux-based penetration testing infrastructure, including virtualized and cloud-hosted environments.
• Configure and manage penetration testing toolchains, frameworks, and supporting services.
• Develop custom exploit scripts, test harnesses, and proof-of-concept code to validate security findings.
• Support red team and application penetration testing engagements through automation and tool development.
SIEM & Security Operations Integration
• Develop APIs and connectors to integrate security tools with enterprise SIEM platforms.
• Implement log parsing, enrichment, and normalization logic to improve detection fidelity.
• Automate alert enrichment, correlation, and reporting workflows.
• Collaborate with CSOC teams to align development efforts with detection and monitoring requirements.
Scripting & Automation
• Develop scripts using Python, PowerShell, Bash, or similar languages to automate security operations and testing processes.
• Implement CI/CD pipelines for security tooling and integration code.
• Maintain version control repositories and documentation for developed solutions.
Security & Compliance Alignment
• Ensure developed solutions comply with HHSC security standards, DIR security control requirements, and NIST-based frameworks.
• Participate in architecture reviews, risk assessments, and technical design sessions.
• Produce technical documentation, configuration guides, and operational runbooks.

Required Skills for the SIEM Engineer:
• 5–8 years of professional software development experience.
• Advanced experience building security automation and platform integrations.
• Hands-on experience with penetration testing tools and Kali Linux environments.
• Experience developing security data pipelines and SIEM integrations.
• Experience with containerization and virtualization (Docker, VMware, cloud-hosted labs).
• Ability to design scalable and resilient security tool architectures.

What’s in it for you?
Why IDR?
#LI-onsite
  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. IDR is subject to certain governmental recordkeeping and reporting requirements for the administration of civil rights laws and regulations. In order to comply with these laws, we invite employees to voluntarily self-identify their race or ethnicity, gender, and veteran status (if applicable). Submission of this information is voluntary and refusal to provide it will not subject you to any adverse treatment. The information obtained will be kept confidential and may only be used in accordance with the provisions of applicable laws, executive orders, and regulations, including those that require the information to be summarized and reported to the federal government for civil rights enforcement. You may access this form here.

Apply Now