SIEM Engineer - Google SecOps Administrator

The client is seeking an experienced SIEM Engineer / SecOps Administrator to join a small but critical security operations team on a contract basis. This is an ongoing operational support role — not project-based — working closely alongside a single full-time employee to maintain and administer the organization's Google SecOps (formerly Chronicle) environment. The ideal candidate is highly reliable, technically sharp, and capable of strong verbal and written communication to effectively collaborate in a close-knit, on-site setting. If you believe you are the right fit for the role, we welcome you to apply!

Key Responsibilities
• Administer and maintain the Google SecOps (Chronicle) SIEM platform on a day-to-day operational basis
• Develop and manage log parsing rules to ensure accurate ingestion and normalization of security data
• Configure and manage API-based data ingestion pipelines into the SIEM environment
• Implement and maintain Role-Based Access Control (RBAC) policies across the SecOps platform
• Troubleshoot, update, and optimize integrations between Google SecOps and connected data sources
• Monitor platform health and performance, identifying and resolving issues proactively
• Collaborate daily with the on-site FTE to ensure continuity of security operations coverage
• Document configurations, processes, and changes to maintain an accurate operational knowledge base

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

• 2+ years of hands-on experience with Google SecOps (Chronicle) specifically — non-negotiable
• 5+ years of overall SecOps/SIEM administration experience in an operational environment
• 5+ years of experience with log parsing, including rule creation and normalization techniques

Skills & Technical Requirements

• Log parsing and unparsed log troubleshooting
• API ingestion configuration
• Role-Based Access Control (RBAC) management
• Integration updates and troubleshooting between platforms
• Dashboard building within Google SecOps
Active Directory group management/user provisioning

- Familiarity with Google SecOps AI triage agents
- Proficient in dashboard development and customization within Google Security Operations (SecOps) to support security monitoring and analysis

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.