The SIEM Expert will be focusing on SIEM technologies. The role requires a detail-oriented professional who will provide; senior level SIEM support to our pre-sales Team and delivery of SIEM solutions.
The SIEM Expert will be called upon to understand the customer requirements and recommend the appropriate SIEM solution to meet those requirements. The SIEM Expert will support the SIEM solution with Architecture and Design documentation. This role will be an excellent position for an individual with strong technical, communication, and customer facing skills.
Understand customer requirements and recommend best practices SIEM solutions
Offer consultative advice in security principles and best practices related to SIEM operations
Developing new SIEM rules, correlations, dashboards to meet the customer needs
Design and document a SIEM solution to meet the customer needs
Assist in the creation and verification of Statement of Work (SOW) documentation
Assist pre-sales with SIEM sizing, Architecture, RFP’s and client technical meetings
Deploy and configure the SIEM platform as per Vendor guidelines and industry Best Practices
Assist client with technical guidance to configure end log sources in-scope to be logged to the SIEM
Verification of data of log sources in the SIEM follow the Common Information Model (CIM)
Document the build of the SIEM solution
University Degree in Information Security or equivalent work experience
Minimum 4 years experience in a similar role
Experience with any two or more of the following SIEM products (in order of preference)
o IBM QRadar
o McAfee ESM
o Sumo Logic
o RSA Security Analytics
o HP ArcSight
Preferred SIEM Vendor certification of Administrator
Experience and proficient in UNIX/Linux and/or Regular Expressions.
The following certifications would be considered an advantage: CISSP, CISM, CompTIA Security+, CEH, GSEC