Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Acronis

Senior Security Engineer – Elastic SIEM, Detection Engineering

Acronis

Senior Security Engineer at Acronis leading Elastic SIEM and Detection Engineering program. Responsible for building scalable detection pipelines and improving security event response.

Posted 7/14/2026full-timeRemote • Maine, Massachusetts, New York, North Carolina, South Carolina • 🇺🇸 United StatesSenior💰 $123,000 - $180,000 per yearWebsite

Core Competencies

Role fit
Core Competencies

Use this summary to align your resume positioning with the role.

Demonstrates expertise in Elastic Security and the Elastic Stack, with a strong focus on building and optimizing Detection-as-Code workflows and SIEM engineering. Proven ability to enhance alert fidelity and operational detection quality through effective tuning and incident investigation.

Highest-signal resume keywords
Elastic SecurityDetection-as-CodeSIEM EngineeringCI/CD AutomationDetection Tuning

ATS Keywords

Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills
Cybersecurity EngineeringDetection EngineeringSecurity AnalyticsEQLKQLIngestion PipelinesAlert FidelityIncident InvestigationTelemetry QualityData Retention
Soft Skills
Problem SolvingCollaborationCommunication
Tools & Technologies
ElasticsearchKibanaFleetLogstashElastic Agents
Industry Keywords
MITRE ATT&CKSOARAutomation ToolingAlert EscalationLogging and Visibility

Tech Stack

Tools & technologies
CloudCyber SecurityElasticSearchLogstash

About the role

Key responsibilities & impact
  • Own and optimize the Elastic Security platform (Elasticsearch, Kibana, Fleet, Logstash, Elastic Agents)
  • Design and maintain ingestion pipelines for cloud, endpoint, network, and application telemetry
  • Improve telemetry quality, data retention, performance, and investigation workflows
  • Integrate SIEM workflows with SOAR and automation tooling
  • Build and maintain a Detection-as-Code pipeline using Git-based workflows and CI/CD automation
  • Develop, test, tune, and maintain high-fidelity detections using Elastic Security, EQL, and KQL
  • Reduce alert noise through tuning, enrichment, suppression, and exception handling
  • Map detections to MITRE ATT&CK and drive detection coverage strategy
  • Assist with complex alert escalations and perform initial incident scoping
  • Translate incident learnings into improved detections and telemetry coverage
  • Partner with other teams to improve logging and visibility

Requirements

What you’ll need
  • 5+ years of cybersecurity engineering experience
  • 3+ years focused on SIEM engineering, detection engineering, or security analytics
  • Strong hands-on experience with Elastic Security and the Elastic Stack
  • Experience building or maintaining Detection-as-Code workflows using Git and CI/CD pipelines
  • Strong understanding of detection tuning, alert fidelity, and operational detection quality
  • Ability to independently investigate complex alerts and produce actionable findings

Benefits

Comp & perks
  • Medical, dental, and vision coverage
  • Flexible spending accounts (FSA)
  • Disability and life insurance
  • 401(k) retirement plan with company match
  • Generous vacation policy