We are looking for a knowledgeable Security Architect who specializes in SIEM deployment and migration around highly sensitive regulation-focused sectors such as finance and insurance.The ideal candidate will bring extensive experience in the architecture, design, implementation, and optimization of SIEM solutions. They will collaborate effectively with both client cyber security teams and internal SOC operations, tailoring technology solutions to meet complex business and technical needs within large enterprise settings.Req.#720137035#LI-DNIResponsibilities
Lead the design, deployment, and configuration of SIEM solutions, ensuring seamless integration with various security tools, systems, and log sources
Plan and execute SIEM migration projects, including data transfer, log source integration, rule/alert migration, and configuration tuning
Develop, customize, and fine-tune SIEM use cases, correlation rules, dashboards, and reports to effectively detect threats and suspicious activities
Integrate diverse log sources such as firewalls, IDS/IPS, antivirus, cloud services, applications, and operating systems into the SIEM for comprehensive monitoring
Collaborate with the SOC team to support further use case creation and fine-tuning following SOC team requirements
Regularly review and optimize SIEM performance to ensure efficient log collection, storage, processing, and alerting
Maintain comprehensive documentation for SIEM configurations, integrations, and migration processes, providing regular reports on SIEM performance
Train and mentor junior security engineers and SOC analysts on SIEM use, best practices, and troubleshooting
Work closely with IT, security, and network teams to ensure the SIEM platform aligns with security strategies and goals
Requirements
At least 8 years of experience in Cyber Security, with a specialization in engineering SIEM solutions and working in a SOC
Expertise in SIEM engineering and architecture, with a focus on at least Splunk or any other leading SIEM solutions like Microsoft Sentinel, QRadar, ArcSight, LogRythm
Experience in managing the full delivery lifecycle for SIEM enhancements and automation including working on converged SIEM solutions that include SOAR and XDR solutions within it
Proficiency in integrating log sources and developing correlation rules, alerts, and dashboards
Experience working in cloud environments (AWS, Azure, GCP) and integrating cloud logs into SIEM solutions
Understand security frameworks (MITRE ATT&CK, NIST) and possess basic knowledge of regulatory compliance (GDPR, PCI-DSS)
Knowledge of network protocols, firewalls, IDS/IPS, endpoint security, and threat intelligence
Comprehend the client’s needs, their specific security challenges, and the regulatory landscape to provide tailored solutions
Effectively communicate complex technical concepts to clients, build trust, and establish strong relationships
Manage stakeholders at various levels, from technical staff to senior executives
Collaborate effectively with teams from different departments within large organizations and enterprises
Facilitate discussions, resolve conflicts, and build consensus among stakeholders with diverse perspectives
Make informed decisions based on evidence
Applications will be accepted on a rolling basis.EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.YouTube video player (https://www.youtube.com/embed/NUmnNITn2o?si=IiCxyQ4sr1YJWxDG)In accordance with the LA County Fair Chance Ordinance, you may find a copy of the Notice containing a summary of the Ordinance’s key provisions here: Concept FCO Posting 8 27 24 (lacounty.gov)It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.EPAM Systems, Inc. is an equal opportunity employer. We recognize the value of diversity and inclusion in creating success for our customers, business partners, shareholders, employees and communities. We are committed to recruiting, hiring, developing and promoting employees without discrimination. As a global employer, this commitment includes complying with all laws in the countries in which we operate. Nevertheless, we believe equal employment practices should not be limited to what the law requires. Equal opportunity and inclusion are essential to motivate, empower and recognize the best in everyone.At EPAM, employment actions are based on individual qualifications, without regard to race, color, religion, creed, gender, pregnancy status, sexual orientation, gender identity, gender expression, marital or familial status, national origin, ancestry, genetics, age, disability status, veteran status, citizenship status when otherwise legally able to work, or any other characteristic protected by law.
Full-time- ID: #52939508
- State: Massachusetts Boston 02108 Boston USA
- City: Boston
- Salary: USD TBD TBD
- Showed: 2024-11-22
- Deadline: 2025-01-22
- Category: Et cetera