Providing critical technical support for Honeywell's Aerospace products and resolving complex issues. Working in a hybrid capacity, reporting to the Field Service Manager in Phoenix, AZ.
About the role
- Provide SIEM-focused technical support and incident troubleshooting for Sumo Logic. Advise customers on security data onboarding and threat detection.
Responsibilities
- Act as a primary technical contact for customer support cases related to SIEM, security analytics, log ingestion, and threat detection.
- Diagnose and resolve product issues, particularly those involving security data sources (e.g., firewall logs, endpoint logs, threat intel feeds) and Sumo Logic’s Cloud SIEM capabilities.
- Guide customers in parsing, normalizing, and analyzing security data using Sumo Logic's tools and query languages (e.g., Search Processing Language).
- Collaborate with engineering and product teams to reproduce and escalate product defects, offering insights based on customer environments and use cases.
- Contribute to and improve internal and external knowledge base articles, especially on security best practices, data onboarding, and use-case implementation.
- Provide after-hours support (on a rotating basis) to ensure 24/7 availability for priority incidents.
Requirements
- 3–5 years of experience in technical support, SOC operations, or a related role with a focus on SIEM or security analytics.
- Hands-on experience with Sumo Logic or other SIEM platforms (e.g., Splunk, QRadar, LogRhythm, Sentinel).
- Strong understanding of cybersecurity principles, threat detection methodologies, and compliance standards (e.g., NIST, MITRE ATT&CK, PCI DSS).
- Experience with log collection and analysis from sources such as firewalls, IDS/IPS, antivirus, and cloud platforms (AWS, Azure, GCP).
- Proficiency with search/query languages, scripting (Python, Bash), and regular expressions.
- Excellent troubleshooting skills and customer service orientation.
- Strong written and verbal communication skills.
- Preferred: Security certifications such as Security+, SSCP, GSEC, CEH, or Splunk/Sumo Logic certifications.
- Preferred: Experience in cloud-native security architectures.
- Preferred: Familiarity with JSON, REST APIs, and log forwarding mechanisms (e.g., Syslog, Fluentd).
- Preferred: Background in DevSecOps or experience integrating SIEM tools into CI/CD pipelines is a plus.
Benefits
- Work with cutting-edge cloud-native technology used by security professionals globally.
- Join a high-performing team of technical experts and security enthusiasts.
- Competitive compensation and benefits.
- Opportunities for professional growth and certification.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Desktop Support Engineer providing on - site technical assistance and troubleshooting for customers. Delivering exceptional service and working with a team to ensure system security and functionality.
Customer Support Engineer for KLA, responsible for troubleshooting and repairing complex equipment at customer sites. Ensuring high levels of customer satisfaction and operational quality.
Senior Field Service/Support Engineer providing on - site support for automation products at Rockwell Automation. Responsible for troubleshooting, commissioning, and customer communication in technical projects.
Field Service Technician handling on - site technical support and repair tasks in São Paulo for Capgemini. Responsible for equipment installation, configuration, and maintenance with a focus on service quality.
Financial Advisory Support Analyst assisting financial advisors in client services while managing office workflows. You will support client meetings preparation and coordinate marketing events.
Technical Support Engineer managing customer support for Smarsh products and services. Focusing on issue diagnosis, troubleshooting, and ensuring customer satisfaction.
BTE Support Technician assembling, testing, and packaging hearing instruments in Kitchener. Contributing to a dynamic work atmosphere with comprehensive benefits and career development opportunities.
Middleware / IIS Administrator maintaining IIS web servers and collaborating on Azure components. Ideal for proactive professionals with strong problem - solving skills in a customer - oriented environment.
Middleware / IIS Administrator role collaborating with Application Support to manage web application environments. Requires expertise in C#, IIS, cloud components, and scripting.