Beschreibung
In need of an RSA Netwitness SIEM specialist.Start: June
Duration: 2 months (possible extension)
Location: remote
Language: English, French is a massive bonus
Rate: remote rate
Job Description: RSA NetWitness SIEM Expert
Position Overview:
We are seeking a highly skilled and experienced RSA Netwitness SIEM Expert to join our cybersecurity team for a client project. The ideal candidate will have extensive knowledge and hands-on experience in managing, configuring, and optimizing RSA Netwitness solutions. The SIEM expert will be responsible for analyzing security logs, creating and refining correlation rules, analyzing and developing use cases, and improving the overall effectiveness of our SIEM platform, work hand in hands with the team and hand-over to System Integrator SIEM experts and analysts.
Key Responsibilities:
1. Understand the organizations RSA NetWitness infrastructure, including configuration, tuning, and optimization.
2. Analyze security logs and events to identify potential improvements.
3. Develop, refine, and implement correlation rules to automate threat detection and response.
4. Create and maintain use cases tailored to the organizations specific security requirements and threat landscape.
5. Conduct reviews of existing rules and use cases to ensure effectiveness and relevance.
6. Provide expertise and guidance on SIEM best practices, including log source integration, data normalization, and event prioritization.
7. Develop and deliver reports and presentations to stakeholders on SIEM performance, including key metrics, trends, and recommendations for improvement.
Qualifications:
- Minimum of 5 years of experience working with RSA NetWitness and other SIEM solutions, such as Sentinel, Splunk, IBM QRadar or ArcSight
- Strong understanding of security principles, including network security, threat intelligence, and incident response.
- Experience with log management, log parsing, and data enrichment techniques.
- Strong communication skills, with the ability to convey complex technical concepts to both technical and non-technical audiences.
- Relevant certifications such as NetWitness Associate or Specialist (preferred).
Please kindly send me your updated CV to if you are interested. Or feel free to suggest someone that may be interested in this role and get some extra cash from K2.
Best regards,
Poppy