MS Sentinel SME

22 Nov 2024

Vacancy expired!

Career Opportunity: Job Title: MS Sentinel SME About CodeForce 360 Making a career choice is amongst the most critical choices one can make, and it's important for the choice to be calculated with factors such as a company's run of success since its inception and more. But, when you come across a company that has reputation proven with nothing but an illustrious run of success since the day it began, you don't need to think of anything else. That's precisely what some of our employees and prospective employees think when they came across CodeForce 360. Position Overview MS Sentinel SME Requirements:

  • Candidate is responsible for the design, implementation, and operational success of a SIEM Engineering team within Managed Security Services.
  • This includes managing the people, processes, and technologies required to deliver an efficient and effective SIEM Engineering service while supporting multiple clients across several SIEM technologies.
Qualification:
  • Candidates with bachelor's degree and certification preferred
  • Excellent and effective communication skills
  • Ready to work in 247 shifts
  • CISSP, CISM, or other managerial level information security certification
Tasks and Responsibilities
  • Candidate must knows MS Sentinel
  • 10 + year of SIEM solution like Splunk/HO ArcSight
  • Creating playbooks to implement SOAR
  • Implementing use cases and log management
  • Creating workbooks to implement dashboards and apps
  • Following-up with the client and any enhancements to existing cyber security measures
  • The job also involves identifying potential threats and performing enhancements to existing cyber security measures as per specifications or policy guidelines
  • When a security incident is declared they execute incident response process and document the same
  • Operate the console of security information and event management tools (SIEM-MS Sentinel)
  • Read coded scripts and modify and debug programs
  • Develop custom parsers to parse logs from different sources including firewalls, operating systems, applications, etc.
  • Work on various operating systems and platforms
  • Work with word processors, spreadsheets, and presentations
Technical skills required:
  • Candidate must have MS-SENTINEL Experience
  • Hands-on experience with Kusto Query language
  • Information security skills and experience with SIEM technologies especially Azure Sentinel and other technologies associated with SIEM (IDS/IPS, routers/switches, network and application layer firewalls, log aggregators, etc.)
  • Candidate must have L3 SOC experience
  • Candidate can play Escalation Manager Role in MS-Sentinel
  • Who can closely work with Customer for high security incident so knowledge of AD/O365/Windows 10/AV/SCCM is must
  • Who can review the environment / new features / new requirements in MS Sentinel and work with customer
  • Who knows Syslog
Key Requirements:
  • Who knows MS SENTINEL and is specialized L3 SOC analysis & check/review which was done by offshore team and guide them accordingly
  • Who can play escalation manager role in MS Sentinel
  • Who can closely work with Customer for high security incident so knowledge of AD/O365/Windows 10/AV/SCCM is must
  • Who can review the environment / new features / new requirements in MS Sentinel and work with customer
  • Who can write KQL queries for all correlation rules given by client and according to requirement and guide/review/correct the rules made by offshore team
  • Who knows parser for syslog
How to Apply Job ID: JPC - 71120 For more information, please contact below: Srinivas Kanneboina Qualified individuals will be contacted for an interview.

  • ID: #23259445
  • State: New Jersey Friscobedminster 00000 Friscobedminster USA
  • City: Friscobedminster
  • Salary: USD TBD TBD
  • Job type: Contract
  • Showed: 2021-11-22
  • Deadline: 2022-01-18
  • Category: Et cetera