- Work with technical lead to develop log ingestion strategy
- Contribute to detection strategy based on industry best practices
- Detail step-by-step process to ingest high-quality log sources
- Perform log source monitoring and optimization
- Create high-quality correlation rules
- Tune log sources and correlation rules
- Be an Subject Matter Expert (SME) for SIEM, Correlation, and Log Source Ingestion
- Recognize opportunities where automation can improve analyst alert handling
- Collaborate with internal and external teams to ensure product adoption
- Create technical documentation detailing SIEM aspects of the engagement
- Travel to customer meetings and workshops as needed (10%)
- 6+ years of deploying and integrating (SIEM) to enterprise to large enterprise-level
- Coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring activities using (SIEM) platforms
- The ability to create and develop correlation and detection rules, within a (SIEM) to support alerting capabilities
- Experience working with and deploying a variety of SIEM technologies (i.e. Splunk, IBM QRadar)
- Strong Regular Expression skills
- Ability to understand logs, locating and understanding 3rd party documentation where needed
- Familiarity with reports on the status of the SIEM to include metrics on items such as number of logging sources - log collection rate, and other performance metrics
- Knowledge of Security Analysis & Response a plus, including both endpoint, network & cloud-based environments
- Experience with Security Operation Centers tooling and processes
- Salary: $140,000 – $160,000 -- $75/hr - $80/hr
- Full benefits: Healthcare, Dental, Vision, 401k, Flexible work schedule
-
SIEM Consultant
6 days ago
Zachary Piper Solutions McLean, United StatesPiper Companies is seeking a Remote SIEM Engineer (Cortex XSIAM) to join a premier cyber security organization. The SIEM Engineer will work with clients to determine a suitable detection strategy, helping to protect customers from threats, by designing and implementing correl ...
SIEM Consultant - McLean, United States - Zachary Piper Solutions
![Default job background](https://contents.bebee.com/public/img/bg-user-ex-1.jpg)
Description
Piper Companies is seeking a Remote SIEM Engineer (Cortex XSIAM) to join a premier cyber security organization. The SIEM Engineer will work with clients to determine a suitable detection strategy, helping to protect customers from threats, by designing and implementing correlation rules.
Responsibilities of the SIEM Engineer include:
Qualifications for the SIEM Engineer include:
Compensation for the SIEM Engineer includes: