Identify Security on TwitterIdentify Security on FacebookIdentify Security on LinkedImIdentify Security Blog RSS Feed

SOC Engineer, Cloud Technologies (Azure + GCP)

Our Cyber Security team sees over 200 billion events each year. We are in the front line of everything our organization is doing, so we need a team of highly adaptable technologists to stay ahead of that curve.

Required Experience:

3

+ Years
Job Locations:

Remote

Location Restrictions:

Travel

Basic Qualifications and

Reporting to the Engineering  Director, you will be a key contributor to designing, managing,  improving, and maintaining some of the key technologies that power our security system. You will work closely with stakeholders and cross-functional  teams, leading the transformation of customer needs into solutions that  deliver business value while improving security.

Responsibilities
  • Determines the lifecycle of security information and event management (SIEM) rules, reports, and dashboards to present actionable threat to Intrusion Analysts by refining existing rule logic
  • Collaborating within the Cybersecurity area
  • Creating new rules and reports and removing outdated rules and reports.
  • Collaborates with other security information and event management(SIEM) engineers on architecture and engineering design by leading strategy and design meetings
  • Authoring SIEM roadmaps and coordinating SIEM product evaluations.
  • Partners with internal customer teams (for example, Compliance, Cybersecurity Risk Assessment, Infrastructure) to ensure appropriate threat monitoring by overseeing the gathering of information about system and software solutions in accordance with company audit trail standards.
  • Manages security information and event management (SIEM)infrastructure by monitoring metrics for efficiency and effectiveness
  • Acting as an escalation point during software and hardware upgrades
  • Managing and approving documentation related to incident and change tracking
  • Managing and approving SIEM documentation
  • Participating in pager rotation for on-call support
  • Acting as an escalation point for advanced SIEM troubleshooting
  • Establishing and maintaining vendor partnerships
  • Following up to ensure resolution of open trouble tickets.
Required Skills and Experience
  • Bachelor’s  degree in Computer Science, Information Technology, Engineering, Computer  Information Systems, or related field and
  • 4 years' experience in information  technology or related field within the last 8 years
  • 6 years' experience in  information technology or related field within the last 8 years.
  • 3 years' experience with a log  analysis/SIEM product (for example, Splunk, ArcSight, Qradar, Nitro)  
  • 3 years' experience with manual security log review and analysis (for  example, Windows Event Log, Linux Syslog).
  • 1 year experience creating and presenting technical  strategies and technical solution recommendations.
  • 1 year experience leading  cross-functional teams.
Interested in this position?
Fill out the form below!