Security Engineer / SOC with Microsoft Sentinel experience

20 Nov 2024

Vacancy expired!

Job title Security Engineer / SOC with Microsoft Sentinel experience

Location Frisco, TX OR Tampa, Florida

Job Description
  • Minimum experience in SIEM (Security Information and Event Management) - 5 years
  • General Purpose
  • Candidate is responsible for the design, implementation, and operational success of a SIEM Engineering team within Managed Security Services. This includes managing the people, processes, and technologies required to deliver an efficient and effective SIEM Engineering service while supporting multiple clients across several SIEM technologies.

Qualification
  • Candidates with bachelor’s degree and certification preferred
  • Excellent and effective communication skills
  • Ready to work in 247 shifts
  • CISSP, CISM, or other managerial level information security certification

Tasks and Responsibilities
  • Candidate must know MS Sentinel
  • Strong Experience of SIEM solution like Splunk/HO ArcSight
  • Creating playbooks to implement SOAR
  • Implementing use cases and log management
  • Creating workbooks to implement dashboards and apps
  • Following-up with the client and any enhancements to existing cyber security measures
  • The job also involves identifying potential threats and performing enhancements to existing cyber security measures as per specifications or policy guidelines
  • When a security incident is declared they execute incident response process and document the same
  • Operate the console of security information and event management tools (SIEM-MS Sentinel)
  • Read coded scripts and modify and debug programs
  • Develop custom parsers to parse logs from different sources including firewalls, operating systems, applications, etc.
  • Work on various operating systems and platforms
  • Work with word processors, spreadsheets, and presentations

Technical skills required:
  • Candidate must have MS-SENTINEL Experience
  • Hands-on experience with Kusto Query language
  • Information security skills and experience with SIEM technologies especially Azure Sentinel and other technologies associated with SIEM (IDS/IPS, routers/switches, network and application layer firewalls, log aggregators, etc.)
  • Candidate must have L3 SOC experience
  • Candidate can play Escalation Manager Role in MS-Sentinel
  • Who can closely work with Customer for high security incident so knowledge of AD/O365/Windows 10/AV/SCCM is must
  • Who can review the environment / new features / new requirements in MS Sentinel and work with customer
  • Who knows Syslog

Any Specific Mandate skill required
  • SIEM, SOAR, Azure security center, SIEM, Azure Sentinel, Splunk, QRadar

  • ID: #23040232
  • State: Florida Tampa bay area 33601 Tampa bay area USA
  • City: Tampa bay area
  • Salary: Depends on Experience
  • Job type: Contract
  • Showed: 2021-11-20
  • Deadline: 2022-01-18
  • Category: Et cetera