An ideal role for an experienced security analyst looking for a gradual transition into SIEM Engineering and content development. Huge exposure to various tools, systems and process in a company specializing in Detection & Response, with a focus on big data.
Role Summary:
- Supporting clients with various security services - Security Monitoring, Incident Response, Forensic Analysis, SIEM Content Creation, Malware Analysis
- Identify security gaps and solution vulnerabilities, advise on best practices in addressing gaps
- Guide architecture, design & development activities on maintaining or achieving compliance requirements
- Design security detections and dashboards
Role Requirements:
- Strong technical knowledge and experience working with SIEM, SOAR & EDR tools (Splunk, Crowdstrike, Phantom ideal)
- Strong experience in a Security Operations environment (Analyst & Hunt experience ideal)
- Experience building detections in line with the MITRE ATT&CK framework
- Experience performing vulnerability assessments
- Development skills with Java and/or Python
- Experience working with DevOps practices / in a DevOps team
Beneficial
- Experience implementing security tooling within cloud environments - AWS, Azure
- Experience with advanced security analytics with use of AI / ML
- Industry related certifications in cloud & security
