We Are
Accenture Security helps organizations prepare, protect, detect, respond, and recover across the full security lifecycle. We combine global scale, advanced technologies, and deep industry expertise to deliver end-to-end cybersecurity solutions tailored to client needs.
Our Cyber Defense practice focuses on building and operating modern Security Operations Centers (SOCs), leveraging SIEM, XDR, and advanced analytics to enable effective threat detection and response.

You Are
A hands-on SOC and SIEM practitioner with strong experience in platform implementation and detection content engineering. You are passionate about working close to the tools and data, enabling high-quality detection and response outcomes.

You bring:

• Solid experience implementing and operating SIEM platforms, especially Elastic Security (ELK stack)
• Strong ability to develop and tune detection content (alerts, rules, dashboards)
• Experience working in structured delivery environments with defined architecture and requirements
• Ability to collaborate effectively with architects, analysts, and delivery teams
• A focus on delivery quality, execution discipline, and continuous improvement

You are comfortable supporting complex implementations while taking ownership of defined workstreams within broader SOC programs.

The Work
As an SOC Implementation & Content Engineer, you will play a key role in delivering SOC and SIEM capabilities, with a strong focus on Elastic Security (SIEM, XDR, and EDR) implementation.

Core Responsibilities

• Implement and configure Elastic Security SIEM, XDR, and EDR capabilities across client environments
• Support log ingestion and data onboarding, including configuration, parsing, normalization, and validation
• Develop, tune, and maintain:

o Detection rules and alerts
o Dashboards, reports and visualizations

• Implement threat-based use cases aligned with client requirements and security frameworks

Delivery Execution

• Execute assigned SIEM/SOC implementation workstreams with accountability for timelines and quality
• Work closely with SOC architects to implement approved designs and architecture patterns
• Support testing, validation, and deployment of SOC capabilities
• Optimize platform performance, data quality, and detection effectiveness

Collaboration & Support

• Collaborate with:

o SOC architects and senior leads
o Engineers and platform specialists
o SOC analysts and incident responders

• Support integration of telemetry across:

o Cloud platforms (e.g., Azure, AWS)
o On-prem systems
o Hybrid environments

Content Engineering & Continuous Improvement

• Improve detection quality through:

o Rule tuning and false positive reduction
o Enhancing coverage across threat scenarios

• Align detection content with:

o MITRE ATT&CK framework or similar models

• Contribute to runbooks, documentation, and onboarding artefacts

Team & Delivery Contribution

• Contribute to knowledge sharing and reusable assets

Basic Qualifications

• Active Government of Canada Secret clearance

• • 8+ years of experience in information/cybersecurity with focus on SOC services and detection and response capabilities

• Experience in SOC engineering, SIEM implementation, or detection content development
• Hands-on experience with Elastic Security / ELK stack
• Strong understanding of:

o Log sources and security telemetry
o Data ingestion pipelines and normalization
o Detection rule development and tuning

• Experience supporting implementation and onboarding activities
• Willingness to work on-site in Ottawa (5 days/week)

Preferred Qualifications

• Experience working on SOC build / transformation programs
• Familiarity with:

o MITRE ATT&CK or threat modeling frameworks
o SOAR platforms
o EDR/XDR technologies
o Threat intelligence integration

• Strong documentation and communication skills
• Experience in consulting or managed security services environments

Compensation at Accenture varies depending on a wide array of factors, which may include but are not limited to the specific office location,
role, skill set, and level of experience. As required by local law, Accenture provides a reasonable range of compensation, based on full-time
employment, for roles that may be hired as set forth below.
The recruiting efforts for this position are intended to fill a brand new position.
The base pay range shown below is intended as a guideline to reflect the majority of offers for this role.
It does not represent a maximum limit — in some cases, actual compensation may exceed the range where appropriate.

Information on benefits is here.

Role Location Annual Salary Range
British Columbia/Ontario $69,450 to $119,450