• Manager, Cyber Engineering SIEM

    Sysco (Houston, TX)


    Job Summary

    We are seeking a hands-on Cyber Engineering Manager to lead our SIEM engineering team, with a focus on correlation rule development, threat detection, and security automation. This role requires a technical leader who can actively contribute to engineering efforts while also identifying opportunities to enhance the overall security detection and response program. The ideal candidate will combine deep technical expertise with strategic vision to drive continuous improvement in our cybersecurity capabilities.

    Duties and Responsibilities

    + Development and tuning of SIEM rules, integrations, and SOAR workflows.

    + Architecting and maintaining SIEM infrastructure; optimizing detection logic and alert fidelity.

    + Designing and implementing SOAR playbooks; automating enrichment and repetitive tasks.

    + Monitoring SIEM performance, log coverage, compliance, and detection gap analysis.

    + Partnering with IT/DevOps/cloud teams; training staff; presenting metrics and updates.

    + Leading engineering teams; defining SIEM roadmap; cross-functional collaboration.

    Qualifications

    + Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Technology, or a related field

    Experience Required:

    + 7+ years of experience in cybersecurity, with at least 2 years in a leadership role or threat hunting & Threat intel

    Experience Preferred:

    + 10+ years of experience in cybersecurity, with at least 4 years in a leadership role or threat hunting & Threat intel

    Licenses/Certifications Required:

    + CISSP, GCIA, GCIH, or GCDA, or equivalent

    Technical Skills and Abilities

    + Deep expertise in SIEM platforms (e.g., Splunk, QRadar, Sentinel, LogRhythm).

    + Strong knowledge of detection engineering, threat modeling, and MITRE ATT&CK.

    + Experience with scripting and automation (e.g., Python, PowerShell, REST APIs).

    + Familiarity with SOAR platforms (e.g., Palo Alto XSOAR, Splunk SOAR, Swimlane).

    + Excellent communication, leadership, and project management skills.

    Physical Demands:

    Reasonable accommodations will be made to enable individuals with disabilities to perform the essential functions of this job.

    AFFIRMATIVE ACTION STATEMENT:

    Applicants must be currently authorized to work in the United States. We are proud to be an Equal Opportunity and Affirmative Action employer, and consider qualified applicants without regard to race, color, creed, religion, ancestry, national origin, sex, sexual orientation, gender identity, age, disability, veteran status or any other protected factor under federal, state or local law. This opportunity is available through Sysco Corporation, its subsidiaries and affiliates.