SIEM Platform Engineer

Booz Allen Hamilton

Quick summary

Work type: On-site
Location: Arlington, VA · McLean, VA · Alexandria, VA · Reston, VA
Salary: $77,600–$176,000 / yr
Posted: 40 days ago
Closes: Jul 25, 2026

Market check

Salary context

Below market

How this pay compares to similar roles

Similar $170k

This role $127k

$62k most similar roles pay here $221k

This role pays less than 80% of similar roles. Most pay $137,918–$202,500 — the shaded band above. At the midpoint, this role pays about $127k versus about $170k for comparable roles.

Based on 240 similar postings.

Employer

About Booz Allen Hamilton

Booz Allen Hamilton is a management and technology consulting firm that provides analytics, digital, engineering, and cybersecurity solutions primarily to U.S. government agencies and commercial clients. Industry: Management & Technology Consulting

Booz Allen Hamilton currently has 694 open roles on FindRole.

Listed pay typically runs $86,800–$198,000 across 682 roles with salary data.

Most-posted roles

View all roles at Booz Allen Hamilton

At a glance

TL;DR · SIEM Platform Engineer

Apply Now Log in to save

As a SIEM Platform Engineer at our company, you will join a dynamic team focused on developing and maintaining high-performance security information and event management (SIEM) systems using Elastic technologies. Your primary responsibilities include designing data pipeline architectures for log collection and normalization, creating visualizations and alerts for threat hunting, and ensuring the system adheres to strict security requirements across various deployment environments. You will work closely with clients and vendors to implement best practices and maintain infrastructure stability. The ideal candidate has 1+ years of experience with SIEM platforms like Elastic Security and Kibana, along with expertise in deploying and managing Elastic Stack components such as Logstash, Elasticsearch, and Beats. Knowledge of Kubernetes, cloud containerization, and classified environments is essential, as well as TS/SCI clearance.

Skills

Elastic Kibana Logstash Elasticsearch Beats SIEM Docker Kubernetes OpenShift CI/CD EDR NDR CrowdStrike Corelight Trellix Cribl Apache Kafka Fluentd DevSecOps

What you'll do

Design data pipeline architectures for security operations using log collection and normalization.
Create quality visualizations and alerts for threat hunting and problem identification.
Maintain and troubleshoot Elastic Stack components including Elasticsearch, Kibana, and Beats.
Work with vendors to determine best practices for SIEM system deployment and maintenance.
Deploy platforms across cloud, on-premises, and disconnected environments using Kubernetes or OpenShift.

What we're looking for

1+ years of experience with SIEM platforms like Splunk Enterprise Security and Elastic Security.
Experience in designing data pipeline architectures for security operations, including log collection and normalization.
Proficiency in installing, configuring, maintaining, upgrading, and troubleshooting the Elastic Stack components.
Knowledge of detection engineering pipelines, threat hunting workflows, and automated response capabilities.
TS/SCI clearance required.
Familiarity with deploying platforms across cloud, on-premises, and disconnected environments using Kubernetes or OpenShift.

Similar roles