SIEM ADMINISTRATOR-MANILA

Confidential

Makati permanent

Posted: January 30, 2026

Required Skills

Job Description

SIEM Admin
Position Summary: The SIEM Administrator is responsible for the design, maintenance, optimization, and daily operational support of the organization’s SIEM platforms within the Security Operations Center (SOC). This role ensures reliable log ingestion, parsing, correlation, and data availability to support threat detection, incident response, and compliance requirements. A strong understanding of Splunk, Microsoft Sentinel, and Google SecOps is essential.

Responsibilities and Duties:

Platform Administration & Engineering Deploy, configure, and maintain SIEM platforms, primarily Splunk, MS Sentinel, and Google SecOps. Manage data onboarding: log ingestion pipelines, connectors, API integrations, and event routing. Develop and maintain parsers, normalization schemas, and correlation rules. Ensure platform availability, scalability, and performance through routine health checks and optimization. Maintain access controls, RBAC, and platform security hardening. Content Development & Optimization Build and optimize dashboards, alerts, reports, and saved searches to support SOC analysts and leadership. This can involve SIEM tool, or Data metrics tool like PowerBI or Google Lookerstudio Implement new data sources and detection opportunities as threats evolve. Operational Support Troubleshoot ingestion issues, parsing failures, and correlation logic problems. Maintain documentation for ingestion mappings, correlation logic, and platform configuration. Ensure compliance with logging requirements and retention policies. Collaboration & Governance Work closely with SOC analysts, threat intel teams, security engineers, and system owners. Participate in change management, platform upgrades, and SIEM architecture roadmap planning.

Provide mentorship and knowledge sharing to analysts regarding query building, dashboards, and SIEM best practices.

Qualifications & Requirements Education & Experience 3–5+ years of experience in a SOC, SIEM engineering, security engineering, or related cybersecurity operations role. Formal degree in Cybersecurity, Computer Science, Information Systems, or equivalent experience. Experience operating and maintaining Splunk, Microsoft Sentinel, and Google SecOps (formerly Chronicle).

Experience integrating enterprise technologies (firewalls, EDR, SaaS platforms, cloud services, network devices) into SIEM.

Technical (Hard) Skills SIEM Mastery: Splunk Enterprise (search language, data models, apps, UF/HF/IDX management). Microsoft Sentinel (Log Analytics, KQL, connectors, automation runbooks). Google SecOps / Chronicle (UDM/M, parsers, detections, rules engine). Strong proficiency in KQL, Splunk SPL, and structured query languages. Familiarity with log pipelines, ETL, and data transformation. Experience with cloud platforms (Azure, AWS, GCP) and associated logging frameworks. Knowledge of MITRE ATT&CK, SIEM correlation strategies, and detection engineering principles. Scripting experience (Python, PowerShell, Bash) for automation and tooling. Understanding of TCP/IP, DNS, authentication logs, Windows/Linux logging, EDR/AV telemetry, and cloud audit logs.

Experience with SOAR platforms (Sentinel Automation, Splunk SOAR, or others) is an asset.

Soft Skills Strong analytical thinking and problem-solving abilities. Excellent communication skills and an ability to translate technical details for non-technical audiences. Attention to detail, especially in troubleshooting complex ingestion or parsing issues. Ability to collaborate in fast-paced SOC environments with cross-functional teams. Strong prioritization and time-management, especially during incident pressure. Growth mindset with willingness to learn evolving SIEM capabilities and threat landscapes.

Why Apply Through MisuJob?

AI-Powered Job Matching: MisuJob uses advanced artificial intelligence to analyze your skills, experience, and career goals. Our matching algorithm compares your profile against thousands of job requirements to find positions where you have the highest chance of success. This saves you hours of manual job searching and ensures you only see relevant opportunities.

One-Click Applications: Once you create your profile, applying to jobs is effortless. Your resume and cover letter are automatically tailored to highlight the most relevant experience for each position. You can apply to multiple jobs in minutes, not hours.

Career Intelligence: Beyond job matching, MisuJob provides valuable career insights. See how your skills compare to market demands, identify skill gaps to address, and understand salary benchmarks for your experience level. Make data-driven decisions about your career path.

Frequently Asked Questions

How do I apply for this position?

Click the "Register to Apply" button above to create a free MisuJob account. Once registered, you can apply with one click and track your application status in your dashboard.

Is MisuJob free for job seekers?

Yes, MisuJob is completely free for job seekers. Create your profile, get matched with jobs, and apply without any cost. We help you find your dream job without any hidden fees.

How does AI matching work?

Our AI analyzes your resume, skills, and experience to understand your professional profile. It then compares this against job requirements using natural language processing to calculate a match percentage. Higher matches mean better fit for the role.

Can I apply to jobs in other countries?

Absolutely. MisuJob features jobs from companies worldwide, including remote positions. Filter by location or look for remote opportunities to find jobs that match your preferences.

Ready to Apply?

Join thousands of job seekers using MisuJob's AI to find and apply to their dream jobs automatically.

Interested in this position?