Job Description
• Designing and Implementation SIEM platform architecture • Ensuring overall health of these platforms • Custom log Source integration and parsing • SIEM Debugging and bug fixing • Review customer`s event of interest form and reconfigure system setting • Tunes SIEM components to ensure maximum reliability and reduce false positives • SIEM Plugin development and policy definition based on customer needs • Stay current on changes in SIEM trends
Requirements
• Extensive Knowledge and experience with SIEM • Knowledge and skills in SOC security issues related to Network Service and software • Experience integrating SIEM with various server, network, database, application, and SaaS solutions • Demonstrated experience in the general principles of information security (Security + Certified preferred or similar Courses) • Demonstrated experience in the concepts of Penetration Testing and Vulnerability Assessment (CEH and CHFI Certified preferred or similar Courses) • Sec572, Sec542, Sec511 and For 610 certification have extra credit • Current certification (or ability to obtain certification) in LPIC1/LPIC2 • Familiarity with security tools (AV, firewalls, Security devices, vulnerability scanners, etc.) • Familiar with all passive and active devices especially equipment in Data center area • Understanding and hand on experience on ESX, virtualization, Active directory, Apache, IIS • Working Linux knowledge • Ability to analyze logs & identify security incidents • Be flexible and able to multi-task • Good documentation and reporting skills • Good Knowledge of English
Employment Type
- Full Time
Seniority
Details
Employment type
- Full Time
Educations
Seniority
