Hiring role Senior SIEM Engineer at Hybrid Remote Baltimore, MD (EST Hours)- Onsite 2-3 Times a month minimum, Irvin, TX Also open to work.(prefer Local) at Baltimore, Maryland, USA |
Email: [email protected] |
From: Srikanth Raju, SIRI INFO SOLUTIONS [email protected] Reply to: [email protected] Hello, Hope you are doing well!! Greetings from Siri Info Solutions. I am Srikanth with Siri Info Solutions. We Siri Info Solutions is a global staff augmentation firm providing a wide-range of talent on-demand and total workforce solutions. We have an immediate opening for the below position with one of our premium clients. Job Title: Senior SIEM Engineer Location: Hybrid Baltimore, MD (EST Hours)- Onsite 2-3 Times a month minimum, Irvin, TX Also open to work.(prefer Local) Duration: 4 Month Contract + Experience :8+ years Day to Day Activities: Integrate various applications Onboarding, alerting & routing the data to the platform Gap Analysis Configuration Alerts Python scripting Elasticsearch (Backend & front end) AWS Must Haves: Experience with SIEM integration in cloud environments UNIX Python Scripting Elasticsearch Security background AWS Certifications: CISSP, CCSP, GCIA, GCIH, GMON, etc. Job Description: The SIEM engineer will build and automate high-confidence alerts, processes, perform log gap analysis, and tune detections to identify and remediate gaps in the current detection posture, thereby reducing the overall cyber risk exposure. The engineer will also be responsible for application security logs onboarding into SIEM platform. They will also assist prioritization and workload from infrastructure teams, data analyst to assist with the build/roll out of other tools and integrations. They will also support written technical deliverables such as SOPs and/or process workflows to optimize tool usage and contribute to new capabilities. They will play a crucial role in delivering the infrastructure and data pipeline to threat analysts for their analysis and consumption. This team member will collaborate closely with internal teams, external/3rd party organizations to empower the business. Required Skills and Experience: Bachelor's degree in Information Technology, Cybersecurity, or related field. Minimum 5 years of experience in IT Security or Information Technology. Possess 3-5 years of experience working in a SIEM at the enterprise level. Experience with tools like Google Chronical, Devo, or Elasticsearch. Collaborate with diverse IT and business stakeholders to design and maintain production-quality log management/SIEM reports, facilitating data analysis and visualization. Experience with SIEM integration in cloud environments such as AWS, Azure, or GCP, ability to secure cloud-native workloads and monitor cloud infrastructure using SIEM tools. Experience in scripting languages such as Python, PowerShell, or Bash with strong knowledge of regular expressions allowing for the development of automation scripts and playbooks to streamline SIEM operations and enhance efficiency. Experience in designing and developing REST APIs, demonstrating the ability to create robust and scalable solutions that effectively communicate and interact with other systems and applications. Experience in working with syslog servers, proficiency in configuring, fine-tuning, and maintaining syslog-ng or rsyslog, and the ability to troubleshoot and promptly resolve issues related to syslog systems ensuring the reliable collection, processing, and storage of log data. Experience authoring security runbooks, policy, and best practice documentation, and implementing SOAR platforms. Develop and maintain comprehensive documentation pertaining to log management/SIEM infrastructure configuration and operational processes. Possess advanced system administration skills, particularly with Linux operating systems. Understanding of tactics, techniques and procedures associated with cyber threats and the ability to develop relevant alerting, countermeasures, and threat hunting techniques. Exhibit a strong work ethic, excellent discretion, judgment, and possess a comprehensive understanding of industry standards, IT tools, processes, and foundational knowledge of computer networking. Best Regards, Srikanth Raju Technical Recruiter | Siriinfo Solutions Inc Email id : [email protected] Direct : 732 422 5554 linkedin.com/in/srikanth-potharaju-66b245a6 Keywords: access management information technology Idaho Maryland Texas |
[email protected] View all |
Thu Feb 22 21:44:00 UTC 2024 |