SIEM Engineer

The  Enterprise Information Security team is looking for a SIEM Engineer who will support  the deployment, architecture, management, and maintenance of our QRadar SIEM platform.  

‍

‍

‍

‍

• Create new  use cases to detect suspicious activity and indicators of compromise
• Optimize and  tune existing correlation rules and alerts to reduce false positives
• Optimize  & Integrate intelligence feeds into QRadar
• Enhance  proactive monitoring by creating custom alerts, reports, and dashboards
• Create and  maintain process and monitoring documentation
• Onboard and  validate sources of security log data into the QRadar SIEM platform

‍

• Experience creating QRadar use cases, dashboards, reports, and custom content.
• Experience configuring QRadar data collection, enrichment, deployment, integration and  deployment.
• experience operating in a Security Operations Center (SOC) and incident response  environment.
• Network technologies including protocols, design concepts, and access control
• Security  technologies including encryption, data protection, access privileges
• Knowledge of Microsoft Windows and Linux systems
• Knowledge of both regular expressions (regex) and JSON

‍

‍