| Google Chronicle Architect Or Engineer ERM at Remote, Remote, USA |
| Email: [email protected] |
| From: Santhoshi, HAN IT Staffing [email protected] Reply to: [email protected] Role: Google Chronicle Architect/Engineer ERM - Onsite Work location:ISSAQUAH (US:98027), WA Client: Capgemini JOB DESCRIPTION We are seeking a highly skilled and experienced Google Chronicle SIEM & SOAR Architect/Engineer to lead the design, implementation, and ongoing support of our security information and event management (SIEM) and security orchestration, automation, and response (SOAR) environments. The ideal candidate will have a strong background in security architecture, hands-on experience with Google Chronicle, and the ability to integrate and automate security operations across various platforms. Key Responsibilities: Architect and Design: Lead the architecture and design of Google Chronicle SIEM and SOAR solutions to meet the security needs of the organization. Collaborate with stakeholders to define requirements and ensure alignment with business objectives. Design integration strategies with existing security tools, applications, and data sources. Implementation: Lead the deployment and configuration of Google Chronicle SIEM and SOAR environments. Develop and implement data ingestion pipelines, ensuring the effective collection and correlation of security events. Implement use cases, detection rules, and response playbooks based on organizational security requirements. Support and Maintenance: Provide ongoing support for the Google Chronicle SIEM and SOAR environments, including troubleshooting, tuning, and optimization. Monitor and maintain the health and performance of the systems, ensuring high availability and reliability. Collaborate with security teams to continuously improve detection and response capabilities. Automation and Integration: Develop automation scripts and workflows to streamline security operations and incident response. Integrate Google Chronicle with other security tools (e.g., EDR, firewalls, threat intelligence platforms) to enhance threat detection and response. Training and Documentation: Create and maintain comprehensive documentation of the architecture, configurations, and processes. Provide training and knowledge transfer to internal teams on the use and administration of the SIEM and SOAR environments. Qualifications: Experience: 5+ years of experience in security architecture, engineering, or operations. Extensive hands-on experience with Google Chronicle SIEM and SOAR platforms. Proven experience in designing and implementing large-scale SIEM and SOAR solutions. Experience with scripting languages (e.g., Python) for automation purposes. Technical Skills: Strong understanding of security concepts, threat intelligence, incident response, and security operations. Develop parsers for log integration within Google Chronicle. Proficiency with security technologies and frameworks (e.g., SIEM, SOAR, EDR, IDS/IPS, firewalls). Familiarity with cloud environments (e.g., GCP, AWS, Azure) and cloud security best practices. Knowledge of data normalization, correlation, and threat detection techniques. Soft Skills: Strong problem-solving skills and ability to work independently as well as part of a team. Excellent communication skills, both verbal and written, with the ability to convey complex technical information to non-technical stakeholders. Ability to work in a fast-paced environment and manage multiple priorities. Certifications: Relevant certifications such as Google Cloud Professional Security Engineer, GIAC Security Expert (GSE), CISSP, or equivalent are a plus Keywords: information technology Washington Google Chronicle Architect Or Engineer ERM [email protected] |
| [email protected] View all |
| Mon Sep 23 22:46:00 UTC 2024 |