We are seeking a SIEM & SOAR Specialist who will be instrumental in enhancing our cybersecurity posture through expert management of Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) systems. The specialist will lead efforts in Proof of Concept (POC) development, implementation, and support for SIEM and SOAR solutions to protect our organizations information systems and networks.
- POC Development: Conduct Proof of Concept on various SIEM systems (including Splunk, FortiSIEM, and Open Source solutions) to evaluate their effectiveness and fit for our cybersecurity needs.
- SIEM & SOAR Implementation: Lead the implementation of SIEM and SOAR solutions, including Splunk, FortiSIEM, and Open Source options, ensuring seamless integration with our existing IT infrastructure.
- Customer Support: Provide comprehensive support to customers regarding the SIEM solutions, encompassing configuration, troubleshooting, and generating detailed reports to address security incidents and compliance requirements.
- Parser Development: Take charge of writing parsers for log data analysis, enhancing the capability of SIEM systems to interpret and utilize data more effectively.
- Playbook Creation: Develop playbooks for SOAR solutions to automate and streamline the response to cybersecurity incidents, reducing response time and manual intervention.
- Connector Integration: Integrate connectors with various data sources, enhancing the data collection capabilities of SIEM systems and ensuring a holistic view of the security landscape.
Requirements
- Bachelors degree in Cybersecurity, or a related field.
- Relevant certifications in cybersecurity and SIEM technologies are highly desirable.
- Proven experience with SIEM and SOAR technologies, including Splunk, FortiSIEM, Qradar and Open Source platforms.
- Strong knowledge of cybersecurity principles, IT infrastructure, and network security.
- Experience in writing scripts using python.
- Excellent communication and documentation abilities, capable of explaining complex technical details to non-technical stakeholders.
