.**This is where you save and sustain lives**At Baxter, we are deeply connected by our mission. No matter your role at Baxter, your work makes a positive impact on people around the world. You'll feel a sense of purpose throughout the organization, as we know our work improves outcomes for millions of patients.Baxter's products and therapies are found in almost every hospital worldwide, in clinics and in the home. For over 85 years, we have pioneered significant medical innovations that transform healthcare.Together, we create a place where we are happy, successful and inspire each other. This is where you can do your best work.Join us at the intersection of saving and sustaining lives—where your purpose accelerates our mission.**About Baxter**Baxter provides a broad portfolio of essential renal and hospital products, including home, acute and in-centre dialysis; sterile IV solutions; infusion systems and devices; parenteral nutrition; surgery products and anesthetics; and pharmacy automation, software and services. The company's global footprint and the critical nature of its products and services play a key role in expanding access to healthcare in emerging and developed countries. Baxter's employees worldwide are building upon the company's rich heritage of medical breakthroughs to advance the next generation of healthcare innovations that enable patient care**Responsibilities**:The IT Consultant - SIEM Engineer provides direct support for SIEM Operations. The SIEM Engineer will engage stakeholders to identify logging requirements and opportunities for data enrichment to make the data actionable for Incident Response, Threat Hunting, IT Operations, Machine Learning, and other functions. Additionally, the SIEM Engineer will onboard data, manage capacity and forecast future growth, and ensure that alerting is comprehensive and effective against a range of known attacks as well as emerging techniques.Duties include:- Ensure the health of the SIEM environment, monitor usage and data growth. Report on performance, highlighting issues and addressing them with management and key stakeholders- Provide timely break-fix support when issues occur, consistently inspecting and correcting issues with data onboarding, normalization and search- Engage stakeholders. Consult and advise on platform use to develop custom dashboards and integrations to get the most out of the available data- Establish, monitor and maintain connections to external sources of data enrichment such as threat intelligence feeds, configuration management databases and identity stores- Create and maintain Use Cases for security alerting, maximizing coverage across the MITRE ATT&CK Framework categories, and anticipating emerging techniques