
Contractors’ Warehouse —
Senior Cybersecurity SIEM Engineer (Remote)
Location – Austin, TX
Job ID – Req150110
Category – Technology
Apply By – Applications are accepted on an ongoing basis
Location – Austin, TX
Job ID – Req150110
Category – Technology
Company Overview
What’s the best place we’ve ever built? The place where we work. At Home Depot, our goal is to provide the highest level of service, the broadest selection of products, and the most competitive prices. As the world’s largest home improvement specialty retailer, we operate more than 2,200 retail stores across North America. And each of our associates are focused one thing — helping our customers build and improve their homes, businesses, and ultimately their lives.
Pay Range
The pay range for this position is between $120,000.00 – $180,000.00.
Starting wage may vary based on a number of factors including, but not limited to, the position being offered, location, education, training, and/or experience. The Home Depot offers additional competitive and non-financial benefits, which may include a performance-based bonus program or a profit sharing program depending on position.
Position Purpose:
The Home Depot is seeking a skilled Senior Cybersecurity Engineer with expertise on SIEM platforms such as Cortex XSIAM, Splunk, or similar tools. The ideal candidate will have a strong understanding of networking infrastructure, including core technologies and protocols. This role involves monitoring, analyzing, and responding to security events, as well as optimizing SIEM configurations to enhance threat detection and incident response capabilities.
Job Description:
- Maintain day to day operational health monitoring of SIEM infrastructure and data feeds
- Coordinate or perform troubleshooting and break/fix efforts during service downtime
- Collaborate with external teams to onboard new data sources
- Apply event data to existing security use cases and models
- Write custom extractions in RegEx
- Validate appropriate extraction, parsing, and formatting in event data
- Coordinate with technology teams to ensure appropriate log level configurations
- Review and filter events to reduce unnecessary log ingestion
- Conduct research to baseline normal activity and tune out noise from alerting
- Tune security use cases and models to provide high fidelity alerting
- Develop and configure dashboards for monitoring event trends and alerts
- Configure reporting to provide key metrics and trends to leadership
- Collaborate to develop new, custom security use cases, log correlations, and data models
- Collaborate to send alerting to Incident Management and/or SOAR platforms
- Collaborate to integrate automation with the SIEM platform
- Collaborate to ingest and apply enrichment data in the platform
- Review, test, and perform upgrades to SIEM platform
- Maintain updated service documentation
- Create and maintain alert use case documentation
- Provide subject matter expertise for SIEM platform and processes
- Perform other related duties as assigned
Required Skills:
- 3+ years of cyber security work experience
- 1+ years of SIEM specific work experience with platforms such as Cortex XSIAM, Splunk, etc.
- Good understanding of networking infrastructure concepts, technologies, and protocols
- Capable of identifying gaps in logging/monitoring and recommending solutions
- Able to bridge the gap between technical and non-technical constituents
- Solid people, team, and communication skills
Preferred Skills:
- CCSP, SSCP, GCDA, GSEC, or equivalent certifications
- SIEM vendor specific certifications
- Experience with PCI compliant environment
- Incident Response / forensic work experience
- Experience working with cloud-based solutions, such as Azure, GCP
- Experience with Linux/Unix Administration
- Experienced with writing formal reports
Key Responsibilities:
- 100% Deliver Execution, Plans & Align, Problem Solving – Design automation workflows and capabilities in support of data collection, investigation and incident response Develop threat hunting and data analysis strategy and capabilities Identify and propose new technologies, methodologies and/or approaches to detecting malicious activity Utilize indicators to scope and respond proactively to emerging threats Design, build, configure, maintain and monitor cybersecurity threat defense capabilities and user access management
Direct Manager/Direct Reports:
- This Position typically reports to Manager or Sr. Manager
- This Position has 0 Direct Reports
Travel Requirements:
- No travel required.
Physical Requirements:
- Most of the time is spent sitting in a comfortable position and there is frequent opportunity to move about. On rare occasions there may be a need to move or lift light articles.
Working Conditions:
- Located in a comfortable indoor area. Any unpleasant conditions would be infrequent and not objectionable.
Minimum Qualifications:
- Must be eighteen years of age or older.
- Must be legally permitted to work in the United States.
Minimum Education:
- The knowledge, skills and abilities typically acquired through the completion of a high school diploma and/or GED.
Preferred Education:
- No additional education
Minimum Years of Work Experience:
- 3+
Competencies:
- Action Oriented
- Collaborates
- Communicates Effectively
- Customer Focus
- Drives Results
Paid Time Off Benefits
Salaried associates are eligible for 2 weeks of vacation in their first year; FT hourly will be eligible for 40 hours of paid vacation time after 6 months of continuous service; (for positions in Washington State, Spokane, and Tacoma only) – Salary and Temporary associates will earn 1 hour of sick time for every 40 hours worked; FT associates will earn 1 hour of sick time for every 40 hours worked or 4 hours per month, whichever is greater; (for positions in Seattle only) – Salary and Temporary associates will earn 1 hour of sick time for every 30 hours worked; FT associates will earn 1 hour of sick time for every 30 hours worked or 4 hours per month, whichever is greater.
Location – Austin, TX
Job ID – Req150110
Category – Technology
Role Overview
Position Purpose:
The Home Depot is seeking a skilled Senior Cybersecurity Engineer with expertise on SIEM platforms such as Cortex XSIAM, Splunk, or similar tools. The ideal candidate will have a strong understanding of networking infrastructure, including core technologies and protocols. This role involves monitoring, analyzing, and responding to security events, as well as optimizing SIEM configurations to enhance threat detection and incident response capabilities.
Job Description:
- Maintain day to day operational health monitoring of SIEM infrastructure and data feeds
- Coordinate or perform troubleshooting and break/fix efforts during service downtime
- Collaborate with external teams to onboard new data sources
- Apply event data to existing security use cases and models
- Write custom extractions in RegEx
- Validate appropriate extraction, parsing, and formatting in event data
- Coordinate with technology teams to ensure appropriate log level configurations
- Review and filter events to reduce unnecessary log ingestion
- Conduct research to baseline normal activity and tune out noise from alerting
- Tune security use cases and models to provide high fidelity alerting
- Develop and configure dashboards for monitoring event trends and alerts
- Configure reporting to provide key metrics and trends to leadership
- Collaborate to develop new, custom security use cases, log correlations, and data models
- Collaborate to send alerting to Incident Management and/or SOAR platforms
- Collaborate to integrate automation with the SIEM platform
- Collaborate to ingest and apply enrichment data in the platform
- Review, test, and perform upgrades to SIEM platform
- Maintain updated service documentation
- Create and maintain alert use case documentation
- Provide subject matter expertise for SIEM platform and processes
- Perform other related duties as assigned
Required Skills:
- 3+ years of cyber security work experience
- 1+ years of SIEM specific work experience with platforms such as Cortex XSIAM, Splunk, etc.
- Good understanding of networking infrastructure concepts, technologies, and protocols
- Capable of identifying gaps in logging/monitoring and recommending solutions
- Able to bridge the gap between technical and non-technical constituents
- Solid people, team, and communication skills
Preferred Skills:
- CCSP, SSCP, GCDA, GSEC, or equivalent certifications
- SIEM vendor specific certifications
- Experience with PCI compliant environment
- Incident Response / forensic work experience
- Experience working with cloud-based solutions, such as Azure, GCP
- Experience with Linux/Unix Administration
- Experienced with writing formal reports
Key Responsibilities:
- 100% Deliver Execution, Plans & Align, Problem Solving – Design automation workflows and capabilities in support of data collection, investigation and incident response Develop threat hunting and data analysis strategy and capabilities Identify and propose new technologies, methodologies and/or approaches to detecting malicious activity Utilize indicators to scope and respond proactively to emerging threats Design, build, configure, maintain and monitor cybersecurity threat defense capabilities and user access management
Direct Manager/Direct Reports:
- This Position typically reports to Manager or Sr. Manager
- This Position has 0 Direct Reports
Travel Requirements:
- No travel required.
Physical Requirements:
- Most of the time is spent sitting in a comfortable position and there is frequent opportunity to move about. On rare occasions there may be a need to move or lift light articles.
Working Conditions:
- Located in a comfortable indoor area. Any unpleasant conditions would be infrequent and not objectionable.
Minimum Qualifications:
- Must be eighteen years of age or older.
- Must be legally permitted to work in the United States.
Minimum Education:
- The knowledge, skills and abilities typically acquired through the completion of a high school diploma and/or GED.
Preferred Education:
- No additional education
Minimum Years of Work Experience:
- 3+
Competencies:
- Action Oriented
- Collaborates
- Communicates Effectively
- Customer Focus
- Drives Results
Paid Time Off Benefits
Salaried associates are eligible for 2 weeks of vacation in their first year; FT hourly will be eligible for 40 hours of paid vacation time after 6 months of continuous service; (for positions in Washington State, Spokane, and Tacoma only) – Salary and Temporary associates will earn 1 hour of sick time for every 40 hours worked; FT associates will earn 1 hour of sick time for every 40 hours worked or 4 hours per month, whichever is greater; (for positions in Seattle only) – Salary and Temporary associates will earn 1 hour of sick time for every 30 hours worked; FT associates will earn 1 hour of sick time for every 30 hours worked or 4 hours per month, whichever is greater.
Remote/virtual – An associate in a remote/virtual role typically is not required to work from a designated Home Depot location to complete their job duties. Limited or infrequent in-office presence may be required. We also refer to this as location – independent.
Learn more about our 4 different work locations. Additional information will be provided during the application process.
As part of the application process for this role, there will be an on-line assessment. The assessment usually takes about 17 minutes to complete. You will be directed to the assessment link immediately after submitting your application. Once you click on the link, you will need to complete it within 72 hours after starting it. You may stop and restart the assessment as many times as you like within the 72-hour time frame.
During the assessment, we’ll ask you questions about your approach to work and various work-related situations. The questions are based on characteristics that are related to performing successfully in hourly roles at The Home Depot, including:
- Professional Experience
- Learning Potential
- Responsibility
- Customer Focus
If you have a disability and would like to request an accommodation related to the assessment, or you would like to obtain more information about the assessment, click here to learn more.
Store Location
TX01
VIRTUAL
Austin, TX
Once you’ve applied, please come back and apply for other jobs at this store and any store near you.
Explore Technology
DISCOVER WHAT’S NEXT
Search for your next role by location, job title or keyword. Your next opportunity may be closer than you think.