الوصف الوظيفي
QUALIFICATIONS, EXPERIENCE, KNOWLEDGE & SKILLS:
Implement/deploy various SIEM solutions
Global Security Operations Centre - Securing Engineering Expert
Perform onboarding of new clients quickly and efficiently
Perform data ingestion from different log sources into the SIEM solution and validate for parsing quality
Ability to develop custom parsers
Manage the underlying infrastructure environment using Cloudera Manager
Good understanding of HDFS and Big Data
Content creation for Securonix Snypr platform for SIEM and UEBA modules will be an add-on
Develop cyber threat models that can be utilized in the SIEM solution for threat detection
Solid understanding of TCP/IP networks, security devices like IDS, Firewall etc.
Troubleshoot and resolve SIEM infrastructure related issues
Good in implementation and operational documentation
Works closely with other capabilities like vulnerability management team, threat intelligence team to understand and incorporate threat mitigation
Provide threat and vulnerability analysis as well as security advisory services
Perform health checks on infrastructure (SIEM) and ensure things are in order
Excellent hands-onexperience of SOAR; especially Cybersponse
Ability to create complex playbooks in SOAR to achieve orchestration and automation
Linux flavoured OS administration skills is a must
Python scripting skills will be an added advantage
Know-how knowledge of EDR, Cyber threat intelligence and SOAR mandatory
Manage interactions with internal and external clients
Support the SOC team and client in the incident response process and take inputs for better detection
In-depth understanding of MITRE and Cyber Kill Chain framework
Ability to perform root cause analysis and document lessons learnt to
Participate in the documentation process to ensure accuracy of documentation
critical to the team’s success
Assist with the development of new content and tuning existing content for SIEM
Requirements
Requirements:
Bachelor Degree in Relevant Stream.
Know-how knowledge of EDR, Cyber threat intelligence and SOAR mandatory
Excellent hands-onexperience of SOAR; especially Cybersponse
Content creation for Securonix Snypr platform for SIEM and UEBA modules will be an add-on
Good understanding of interdisciplinary dependencies in a project environment.
Good organizational skills.
Good coordination skills.
Well-developed communication and interpersonal skills.
المهارات
Requirements:
Bachelor Degree in Relevant Stream.
Know-how knowledge of EDR, Cyber threat intelligence and SOAR mandatory
Excellent hands-onexperience of SOAR; especially Cybersponse
Content creation for Securonix Snypr platform for SIEM and UEBA modules will be an add-on
Good understanding of interdisciplinary dependencies in a project environment.
Good organizational skills.
Good coordination skills.
Well-developed communication and interpersonal skills.
تفاصيل الوظيفة
منطقة الوظيفة أبوظبي, الإمارات العربية المتحدة
قطاع الشركة خدمات تكنولوجيا المعلومات
طبيعة عمل الشركة شركة توظيف
الدور الوظيفي تكنولوجيا المعلومات
نوع التوظيف --
الراتب الشهري غير محدد
عدد الوظائف الشاغرة 1
المرشح المفضل
المستوى المهني متوسط الخبرة
https://www.bayt.com/ar/uae/jobs/it-security-professional-4185934/