Job description

Contract Length – 1 year with the possibility of extending

Local Candidates but will allow candidates to possibly work remotely. Must be open to working on a hybrid schedule when the client site fully opens back up.

Job Description

The Cybersecurity Engineer (SIEM) will be part of the Information Security Team. The selected individual will be responsible for incident response, threat hunting, and data analysis to protect and maintain the overall security of the enterprise.

Responsibilities:

• Manage any SIEM projects including design, documentation, development, testing, and implementation of interfaces.
• Investigates and resolves security incidents and recommends enhancements to improve security.
• Engineer, implement, administer, and maintain a complex SIEM designed to meet security and compliance requirements and minimize system/data needs.
• Drive projects and timelines from an agile environment perspective, as well as, leading and mentoring staff regarding the core principles of the SIEM

tools.

• Design, manage, administer and support SIEM tools to optimize searches & correlation of events for threat identification and alert generation in a

shared environment.

• Evaluates, tests, recommends, develops, coordinates, monitors, and maintains information security policies, procedures and systems, including hardware,

firmware, and software.

• Develop use cases, data models, and connectors within the SIEM to meet the overall objectives.
• Configure rules and alerts for F5 Silverline Web Application Firewall (WAF) to SIEM tools.
• Pulling and massaging data to create dashboards and content development to present to ISOs and others.
• Creating thorough reports and documentation of all incidents and procedures; presenting findings to team and leadership on a routine basis.
• Other duties as assigned to assist the Infrastructure Information Security Officer (ISO).

Required:

• BS or BA degree in a Computer Science or a related technical discipline, five (5) or more years of relative experience or training.
• Considerable experience with security requirements in the National Institute of Standards and Technology (NIST), ISO 27001, COBIT, NICE, ITIL, or

others.

• Hands on experience with SPLUNK, ELASTIC, SumoLogic, QRadar, ELK, or other SEIM tools to deploy and manage with design dashboards, monitor privileged

accounts, validation, filters, and collect security alerts.

• Strong understanding of SIEM Architecture, incident response, and penetration testing
• Experience in a cloud environment (AWS, Azure, or Oracle Private Cloud).

Preferred. Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems

Auditor (CISA), CompTIA Network+, Security+, or GIAC Cybersecurity Certifications.

learninglandscape.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, learninglandscape.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, learninglandscape.com is the ideal place to find your next job.