SIEM Engineer
Job Offers
Information
Why it’s worth it:
You will be working in a managed environment and managing a SIEM implementation (post) as well as normal roles of security engineering such as (client interfacing, security incident response and daily information security duties). Specific responsibilities will include long term customization work following the initial deployment. These tasks will include working with large Fortune 1000 customers to implement best practices, determine specific use cases and fully integrate the solution into their environments and workflow.
The everyday hustle:
Complete Performance and Availability Reviews (PARs)- ensure the SIEM’s are up and functional and expected log sources are coming in
ServiceNow First Response- ensure health tickets are picked up and actioned
Responsible for the initial pickup of tickets within ServiceNow based on criticality and SLA
Work with team members to meet deadlines for the SWOT continuous improvement projects within the organization
Interact with vendor support- calling SIEM vendors and performing WebEx to resolve issues
Basic log source integration and basic troubleshooting as the expertise grows
Train in the CyberRange – performing new SIEM installs, basic troubleshooting, and advanced troubleshooting in a simulation range for training
Maintain, upgrade, and test in our internal sandbox lab environments
Ensure individual KPI’s are being met
Do you have what it takes?
Bachelor's degree in a related field or equivalent demonstrated experience and knowledge
Foundational knowledge in Systems Administration/ Engineering
Functional knowledge of Linux (various flavors acceptable- RedHat, Kali, Ubuntu, Debian, etc.)
Foundational knowledge of and passion for Cyber Security concepts and topics
Strong problem solving and abstract reasoning abilities
Must be able to demonstrate great attitude, energy, and effort
Must be able to be adaptable, focused, accountable, and helpful
Excellent verbal and written communication skills
