FCC - Security Engineer / SIEM Engineer

About this role

cFocus Software seeks a Security Engineer / SIEM Engineer to join our program supporting the Federal Communications Commission (FCC). This position is remote. This position requires the ability a Public Trust clearance.
Qualifications:

- Bachelor’s degree in cybersecurity, IT, or related field (or equivalent experience)
- Demonstrated experience in enterprise cybersecurity, SIEM engineering, or monitoring environments
- Experience supporting systems of similar scale, complexity, or criticality
- Ability to support engineering, monitoring, and operational cybersecurity functions
- Experience with enterprise SIEM platforms (e.g., Splunk, Sentinel, QRadar)
- Strong understanding of log management, event correlation, and telemetry pipelines
- Knowledge of cybersecurity frameworks (NIST, RMF, FISMA)
- Experience with cloud and hybrid environments (Azure, AWS, M365)
- Familiarity with EDR, XDR, and network security tools
- Ability to analyze large datasets and identify security trends
- Experience supporting SOC operations and incident response
- Experience with automation and SOAR platforms
- Knowledge of Zero Trust Architecture and modern security frameworks
- Scripting experience (Python, PowerShell)
- Familiarity with threat intelligence and threat hunting techniques
- Required Certifications
- CompTIA Security+
- Certified Information Systems Security Professional (CISSP) (preferred)
- GIAC certifications (e.g., GCIA, GCIH)
- Splunk, Microsoft Sentinel, or other SIEM platform certifications
- Equivalent certifications demonstrating similar competency may be accepted

Duties:

• Administer, configure, and optimize SIEM platforms and monitoring tools
• Integrate and onboard new data sources, ensuring proper normalization and validation
• Develop and tune detection rules, alerts, and correlation logic to reduce false positives
• Support log management, telemetry pipelines, and enterprise monitoring architecture
• Identify gaps in visibility and reco...