SIEM ENGINEER - REMO....
SIEM ENGINEER - REMOTE -UAE PROJECT - THANE
Posted on :
23-03-2024
Employer Active
1 Vacancy
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
Req ID : 2740101
Job Title: SIEM Resource (Remote)
Location: Thane Mumbai (Remote)
Experience: 3 years in any 2 SIEM Technologies (Qradar Splunk Arcsight)
Availability: Able to join within 30 days
*Job Description: Senior Security Engineer SIEM Technologies*
*Position Overview:*
We are actively seeking a seasoned Senior Security Engineer with expertise in Security Information and Event Management (SIEM) technologies. The ideal candidate will possess a minimum of 5 years of handson experience in implementing configuring and managing SIEM solutions along with proficiency in at least one of the following platforms: IBM QRadar Splunk or ArcSight. This role will be pivotal in designing optimizing and maintaining our SIEM infrastructure to detect and respond to security threats effectively.
*Key Responsibilities:*
1. Design deploy configure and manage SIEM solutions to monitor and analyze security events across the organizations IT infrastructure.
2. Develop custom correlation rules alerts and dashboards tailored to specific threat detection use cases.
3. Conduct regular tuning and optimization of SIEM rules and policies to minimize false positives and enhance detection accuracy.
4. Integrate and normalize log sources from diverse IT systems network devices and applications into the SIEM platform.
5. Collaborate with crossfunctional teams to identify security requirements and implement SIEM use cases aligned with business objectives.
6. Investigate and respond to security incidents escalated by the SOC team ensuring timely resolution and documentation.
7. Perform regular health checks performance monitoring and capacity planning for the SIEM infrastructure.
8. Stay abreast of emerging threats vulnerabilities and best practices in SIEM technologies and cybersecurity.
9. Provide mentorship and guidance to junior security analysts and SOC team members on SIEM operations and best practices.
10. Participate in security assessments audits and compliance initiatives related to SIEM controls and capabilities.
*Requirements:*
Bachelors degree in Computer Science Information Security or related field.
Minimum of 5 years of progressive experience in designing implementing and managing SIEM solutions.
Proficiency in at least one of the following SIEM platforms: IBM QRadar Splunk or ArcSight. Certification in the selected platform(s) is required.
Strong understanding of cybersecurity principles threat detection techniques and incident response procedures.
Experience with scripting languages (e.g. Python PowerShell) for automation and customization within SIEM environments.
Excellent analytical skills with the ability to analyze and interpret complex security data sets.
Effective communication and collaboration skills with the ability to work across technical and nontechnical teams.
Relevant industry certifications such as CISSP GIAC Splunk Certified Admin IBM QRadar Certified Deployment Professional or ArcSight Certified Security Analyst are highly desirable.
*Note:* This job description outlines the core responsibilities and requirements for the Senior Security Engineer role focused on SIEM technologies. Candidates meeting the specified experience and certification criteria are encouraged to apply.
analytical skills,incident response,python,cybersecurity,communication skills,arcsight,qradar,security,powershell,infrastructure,ibm qradar,scripting languages,splunk,ibm,siem
Employment Type
Full Time
Key Skills
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
