Do you love a career where you Experience Grow & Contribute at the same time while earning at least 10% above the market If so we are excited to have bumped onto you.
If you are a SIEM Engineer Google Chronicle and looking for excitement challenge and stability in your work then you would be glad to come across this page.
We are an IT Solutions Integrator/Consulting Firm helping our clients hire the right professional for an exciting long term project. Here are a few details.
Check if you are up for maximizing your earning/growth potential leveraging our Disruptive Talent Solution.
Role: SIEM Engineer Google Chronicle
Location: Hyderabad Bangalore Pune
Hybrid Mode Position
Exp: 410 Years
Responsibilites:
- As a SIEM Engineer your responsibilities will include managing and providing support for the health and operations of our Security Information and Event Management (SIEM) system. This entails supporting architecture changes deploying tools and developing advanced content. Your duties will also involve configuration management troubleshooting and addressing complex issues in daytoday operations. Additionally you will onboard security log data sources develop custom parsers and conduct SIEM architecture assessments and design reviews.
- Furthermore youll deliver advisory support and education on SIEM to other members of the Security Operations Center (SOC) and technology management personnel. Youll help define implement and monitor key risk indicators (KRIs) and key performance indicators (KPIs) and stay updated on the latest IT security regulatory and compliance trends to support various risk and data models.
- Your role will also encompass functional and quality testing of SIEM Use Case content developing actionable use cases based on threat actor trends and enhancing existing SOC processes to increase centralized visibility for identifying suspicious activity. Youll assist in the development of the Use Case Roadmap coordinate with Content Engineers for advanced Use Case development and maintain content development/deployment baselines across clients.
- Moreover youll review system security plans network diagrams and vulnerability and patching requirements. Youll develop scripts to simplify data collection and automate data onboarding tasks. Additionally you may provide 24/7 oncall support as needed coordinate with various technical groups and attend client meetings to build relationships with client counterparts.
Requirements
- Bachelor s degree in Computer Science Cyber Security Information Security Engineering or Information Technology.
- 4 years of experience in security information and/or technology engineering support.
- Certification such as Certified Information Systems Security Professional (CISSP) Certified Intrusion Analyst (GIAC) Continuous Monitoring (GMON) Certified Ethical Hacker (CEH) or equivalent.
- Extensive experience in security technologies including SIEM IDS/IPS DLP Proxy Web Application Firewall (WAF) EDR AntiVirus Sandboxing network and hostbased firewalls and Threat Intelligence.
- Knowledge of Advanced Persistent Threats (APTs) tactics techniques and procedures.
- Understanding of possible attack activities such as network probing/scanning DDOS and malicious code activity.
- Familiarity with common network infrastructure devices like routers and switches.
- Understanding of basic networking protocols such as TCP/IP DNS and HTTP.
- Detailed knowledge in system security architecture and security solutions.
Preferred skills:
- Experience in interpreting searching and manipulating data within enterprise logging solutions such as SIEM IT Service Management (ITSM) tools workflow and automation.
- Certifications in Ethical Hacking and Information Security such as OSCP CEH CISSP SANS etc.
- SIEM certifications including Splunk Architecture HP ArcSight IBM QRadar certified etc.
- Additional certifications such as CISSP CISA CISM GCIH GMON GCDA GPEN GCFA GCTI.
- Strong interpersonal and organizational skills.
- Excellent oral and written communication skills.
- Proficient in analytical and problemsolving abilities.
- Selfmotivated to enhance knowledge and skills.
- A keen interest in understanding the what why and how of security incidents.
Benefits
Bachelor s degree in Computer Science, Cyber Security, Information Security, Engineering, or Information Technology. 4+ years of experience in security information and/or technology engineering support. Certification such as Certified Information Systems Security Professional (CISSP), Certified Intrusion Analyst (GIAC), Continuous Monitoring (GMON), Certified Ethical Hacker (CEH), or equivalent. Extensive experience in security technologies including SIEM, IDS/IPS, DLP, Proxy, Web Application Firewall (WAF), EDR, Anti-Virus, Sandboxing, network- and host-based firewalls, and Threat Intelligence. Knowledge of Advanced Persistent Threats (APTs) tactics, techniques, and procedures. Understanding of possible attack activities such as network probing/scanning, DDOS, and malicious code activity. Familiarity with common network infrastructure devices like routers and switches. Understanding of basic networking protocols such as TCP/IP, DNS, and HTTP. Detailed knowledge in system security architecture and security solutions.