freelance
SIEM Engineer Reference number: 1188
Last update: 08-11-2019, 11:03
Sector: Banking
Job description
You'll join SOC as an Expert in SIEM.
The Security Operations Centre (SOC) houses the information security team responsible for monitoring and analysing an organisation’s security posture on an ongoing basis.

In your role as subject matter expert you are responsible for getting the logs on-boarded in the SIEM, and develop rules that generate the alerts monitored by the tier 1 function.
Additionally you guide and coach your junior team members and guard the use case development and maintenance framework, this includes adhering to standards and keep documentation up to date.
What you’ll do
  • Keep abreast of evolving cyber threats and identifying new and sophisticated methods of detecting them
  • Interact with customers to gather requirements and ensure the implementation of cyber security solutions.
  • Responsible for the creation of procedures, runbooks, high-level/low-level documentation, implementation of processes and development of staff for managing and maintaining SIEM and it’s components across internal and client environments.
  • Contributor guides Junior Engineers in supporting existing systems and initiatives
  • Responsible for configuration of current enterprise security log source types into the SIEM
  • Analyses and identifies areas of improvement with existing processes, procedures and documentation
  • Demonstrates how to use SIEM & Enterprise Security products to both technical/non-technical personnel.
Profile
  • Good security mind set;  

    · Sense of urgency and able to apply risk based approach to prioritize work;  

    · Strong analytical skills;  

    · Able to work autonomously  

    · Motivated to learn new technologies and come up with process improvements and efficiencies  

    · A team-focused mentality with ability to work & collaborate effectively in a team environment;  

    · Reporting and continuous improvement mindset  

    · Project Management skills  

    · You have good influencing/persuasion skills, obtaining approval of others with good arguments, appropriate influencing methods and a certain “natural authority” (persuasion) 

    · You examine matters from a distance and putting them in a broader context and time perspective (vision)  

    · Good leadership and communication skills, whether on the field, in the team or with management: you are a keen team player and coordinate work amongst people from different areas or divisions. A good relationship builder with strong diplomacy skills  

    · Capability to ensure confidentiality and discretion in performing sensitive tasks  

    · At ease in a fast changing environment, flexible and pragmatic, open-minded
Required Skills
  • Experience in development and maintenance of SIEM use cases  
  • Experience in security device management and SIEM
  • Strong knowledge of network security zones, firewall, IDS.  
  • Strong knowledge of log formats for syslog, http logs, and DB logs.
  • Knowledge of Linux platforms.  
  • Experience administering multiple security technologies (Firewalls, IDS/IPS, SIEM).  
  • Excellent English communication skills (written and oral) 
  • Assets:
    · QRadar Certified  
    · Any other Security Certifications 
Interested? Send us your resumé
To apply for this job, please complete the form below and join your resume. This instantly places your information into our database. Once we have received your information, we will be in touch by e-mail or phone. If you have not heard from us after 3 working days, please call us!

Thank you for your interest in working with Harvey Nash and we look forward to assisting you in your job search!

Only PDF, max. 10MB

Only PDF, max. 10MB