Job Description
Information security SIEM Specialist required for market leading firm who are bringing their security unction to next level of maturity.
The Role:
- You will act as a SIEM architect
- Ensure successful collection of log feeds from various sources and onboard them to the SIEM tool
- Support SIEM configuration
- Configure appropriate SIEM alerting and provide relevant reporting
- Development and reporting of processes and play books relating to the detection, analysis and response to information and events
- Integration of CTI feeds into SIEM tech
- Provide full visibility of security risks to individuals, processes, and technology
Key skills:
- Deep understanding of SIEM technologies and architecture
- Good analytical skills in threat, vulnerability, and intrusion detection analysis
- Have experience of deploying SEIM Solutions: (e.g Qradar, Splunk, Logarithm)
- Have provided SME support for SIEM projects and services previously
- Have worked in a SOC, and has experience in Threat hunting and Incident Response
- Strong hands on technical experience of core security services and an awareness of emerging services
- Strong experience with cloud native or hybrid third party security solutions
- SoC / CSIRT environment
- SIEM & SOAR solutions and cloud-based logging / analytics
- Experience using automation with security services
- Expert knowledge of monitoring & logging integration
As an ideal candidate, you will have an industry certification such as CISSP / CCSP / ISC2 / CCNA / CCNP / CEH/ CISMP and have expert knowledge of Information Security. You will also have a proven track record of delivery in a similar role.