Security Engineer - SIEM

Security Engineer - SIEM.

Location: #Budapest.
Salary: Competitive.
Employer: IBM.

Responsibilities:
• Responsible for managing and maintaining security technology infrastructure, including SIEM, SOAR, EDR, AV, and Cloud security controls;
• Configuring SIEM dashboard to create, view, and maintain a dashboard based on common and custom searches;
• Development of SIEM workbooks/playbooks/runbooks to analyze and interpret data;
• Develop Use Cases, Rules and building blocks;
• This role involves developing use cases, rules, tuning and optimization reports, run books, security policy recommendations and deploying them to the client environment;
• Ensures that infrastructures are patched, upgraded, and functioning efficiently;
• Configuring QRadar user management and data access control;
• Analyzing and translating system and network activity, indicators of compromise, and attacker tactics to identify malicious activity;
• Design and configure a Microsoft Sentinel workspace;
• Plan and implement the use of data connectors for ingesting data sources into Microsoft Sentinel
• Manage Microsoft Sentinel analytics rules;
• Perform data classification and normalization;
• Configure Security Orchestration Automated Response (SOAR) in Microsoft Sentinel;
• Applies the MITRE ATT&CK framework to classify attacks, identify attack attribution, and assess risk, and is proficient in using the NIST Cybersecurity framework to evaluate the risk of threats.

Requirements:
• Bachelor's Degree;
• Proficient with one of the following SIEM technology - QRadar, Microsoft Sentinel, Splunk or Palo Alto;
• Intelligence, Reference Data Management;
• Security Incident & Event Management (SIEM), Endpoint Detection and Response technology, anti-malware, anti-spam, network security technologies, and general user and network activity logging policies;
• 2+ years SOC Analyst experience;
• 3+ years general cybersecurity experience.

⚡ Показать контакты

#Офис #ИБ