System Security Engineer-Onsite -Bloomfield, CO(Hybrid) at Bloomfield, Connecticut, USA |
Email: [email protected] |
Please share resume at [email protected] Job Title: System Security Engineer Visa Status: US Citizen Overview:- Sr. SIEM/SOAR Engineer The Senior Information Security Engineer will report to the Sr. Manager of Security Operations and will be responsible for leading the detection engineering efforts for our SIEM and working with our Managed Security Service Provider (MSSP). This role will involve developing advanced detection capabilities, tuning and optimizing SIEM rules, and collaborating with the SOC team to enhance threat detection and incident response. {Focus on detection engineering and SIEM management.}. AKA_ Someone with In-depth knowledge of SIEM platforms and experience with rule development and optimization. Requirements: A. Must have 5 yrs. leading the design, implementation, and maintenance of advanced detection mechanisms within the SIEM/SOAR activities. o Develop, tune, and optimize SIEM rules and use cases to improve the accuracy and effectiveness of threat detection. o Conduct regular assessments of the SIEM configuration to identify and remediate gaps in coverage or performance. o Review and apply threat intelligence to the SIEM to stay ahead of emerging threats and vulnerabilities. o Collaborate with the SOC team and MSSP to enhance threat detection and response capabilities. o Integrate various log sources into the SIEM to ensure comprehensive visibility and monitoring across the environment. B. Develop and implement automation playbooks for SOAR to streamline and enhance incident response processes such as: o Analyze and interpret security logs and alerts to identify potential threats and vulnerabilities. o Provide guidance and mentorship to junior security engineers and SOC analysts on detection engineering and incident response best practices. o Manage ticket queues, handle escalations, and review operational metrics to ensure the effectiveness of detection and response efforts. o Maintain strong communication with stakeholders, including senior management, to report on detection capabilities and security incidents. C. Conduct attack simulations and penetration testing to validate and improve detection capabilities. D. Knowledge of security frameworks and standards, including NIST, ISO/IEC 27001, and PCI-DSS E. Proficiency in network security tools and technologies, including intrusion detection/prevention systems, firewalls, and endpoint security solutions F. Advanced knowledge of Windows and Linux operating systems and their security configurations. G. Certifications such as CISSP, GIAC, or similar are preferred. Thanks and Warm Regards, Shivangi Audichya Accounts Manager ACE Technologies Inc. 2375, Zanker Road, Suite 250, San Jose, CA 95131 www.acetechnologies.com Phone: 408-683-9500 x 4233 [email protected] Escalation Queries for urgent attention | Himanshu Gupta | Regional Manager | Phone: 408-683-9500 Ext - 4215 | [email protected] We respect your Online Privacy. This is not an unsolicited mail. This mail cannot be considered Spam as long as we include Contact information and a method to be removed from our mailing list. If you are not interested in receiving our e-mails then please reply with a "REMOVE" in the subject to [email protected] and mention all the e-mail addresses to be removed with any e-mail addresses, which might be diverting the e-mail to you. -- Keywords: information technology California System Security Engineer-Onsite -Bloomfield, CO(Hybrid) [email protected] |
[email protected] View all |
Fri Aug 09 23:53:00 UTC 2024 |