Elastic SIEM Engineer
Elastic SIEM Engineer
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
Job Description:
On behalf of our client we are looking for an Elastic SIEM Engineer who will be responsible for managing the Elastic Cloud Enterprise & Elasticsearch platforms for an agency in DHS within Swish Datas Center of Excellence (COE). The employee will be focused on the daytoday operations and improvement of the ECE cluster utilized as the SIEM function within this agency.
Job Responsibilities:
Elastic SIEM solution development integration platform architecture and capacity planning in missioncritical environments
Deploying additional Elastic clusters using infrastructure as code (Ansible playbooks)
Maintain secure and upgrade ECE deployments
Integrate log and sensor data into ELK
Requirements
Job Requirements:
Should be familiar with ElasticSearch Kibana Logstash SOC operations opensource security frameworks and Linux.
Should have a minimum of 6 years of experience as an Elastic SIEM Engineer.
Should have a Bachelors degree.
A Top secret security clearance is required.
Should be FLSA exempt.
Should have 7 years of experience with IT with a focus in Linux sysadmin or cyber operations.
Should have 3 years of experience with handson operations of sizing monitoring and management and opensource tools including Kafka Logstash Beats Elasticsearch Kibana or Splunk.
Should have experience working with data solutions in the public sector.
Desired Requirements:
Elastic Certified Analyst (ECA) and/or Elastic Certified Engineer (ECE) certifications
Security CEH RHCSA LFCS or similar certifications.
Handson experience with VMWare virtualization
Experience as a technical instructor or technical writer
Employment Type
Full-Time
