Beschreibung
Michael Bailey Associates is currently looking for a SIEM Infrastructure Specialist to work in a globally diverse team of SIEM and Security Specialists for a leading bank, in order to identify and align business and IT objectives, discover security or operational pain points, offer recommendations, implement solutions, and recognize current and future IT security needs. The role will provide future opportunities and career advancement for this resource. The candidate will be a part of a team implementing and maintaining the global SIEM infrastructure using innovative technology stack.Responsibilities:
- Add/Modify/Archive log sources
- Ability to explain and document alert use-cases for all relevant components (alarms, watchlists, reporting, and correlating data from multiple dissimilar log sources)
- Schedule and run regular technical change requests (i.e. alert modifications, IOC updates, security patches, major and minor software releases)
- Tune/Enhance existing alert framework and client custom framework
- Work closely with Threat Analyst/Hunter to improve proactive defense posture
- Work closely with the Analyst Team to improve SOC alerting
- Provide overall guidance, instruction and leadership to SOC analysts
- Provide mentorship and guidance to SOC analysts regarding technologies and alerts
- Engage in knowledge sharing with other team members
- Provide major/minor component infrastructure support
- Conduct Health Checks and Regular Maintenance Tasks
- Triage SOC alert influxes, enterprise failures and reconfigurations
- Open and follow-up on service requests with 3rd party vendors
- Maintain current knowledge on industry issues/trends and competitive SIEM products
- Maintain and expand working knowledge of current managed technologies
- Improve technical understanding of all managed technologies
- Communicate effectively orally and in writing, and establish a cooperative working relationship with persons contacted in the course of performing assigned duties
Essential skills and qualifications:
- College Diploma or University Degree in Information Security or relevant security up-to-date certificates and/or equivalent work experience
- Holds certifications of security technologies or SIEM technologies
- Minimum 4 years' experience in IT security field
- Linux and Unix engineering
- Syslog
- Strong understanding of IT Security concepts, best practices, and market direction
- Possess expert knowledge and experience with any SIEM System
- Ability to create and implement a custom parser
- Strong troubleshooting, reasoning and problem-solving skills
- Strong knowledge of TCP/IP protocols and the ability to analyze network traffic
Nice to have:
- Cyber Security Experience
- Big Data Technologies
- Operation knowledge of security threat and attack countermeasures
- Ability to conduct forensic analytical studies and investigations
- Experience with SOC operations
If you are interested to the role, feel free to apply or contact me at:
Michael Bailey International is acting as an Employment Business in relation to this vacancy.