Senior Cloud Security SIEM Engineer contract 6-18 Months. My client a leading global firm is in urgent need of a talented and experienced Senior Cloud Security SIEM Engineer to join their group on a rolling contract basis.
This will be to join their Cyber Security Operations team. The ideal candidate must have deep knowledge of security controls, tools, features, and operations for AWS / Azure. Candidate should be able to demonstrate relevant experience with implementing and enhancing detective capabilities in a fully managed AWS / Azure environment. The candidate should be intellectually curious about technology and the evolving threat landscape. This role will help to build a detection engineering process and culture for a SIEM platform covering on-prem and multi-cloud environments while serving as a technical subject matter expert for the AWS / Azure environment. It will partner with teams across Global Information Security to design, develop, tune, and maintain detection content to protect my client and support my clients information security policies and/or procedures.
Successful candidates will have experience writing and tuning detections. Experience with SIEM tools. Experience designing and implementing technical solutions to enhance visibility, alerting capabilities, and reduce risk within AWS. Experience reviewing applications, infrastructure, and architectural designs to identify threats and vulnerabilities. You will have experience with a range of AWS. Azure native services and tools (i.e. Guard Duty, Security Hub). Understanding of threat frameworks, such as MITRE ATTCK for Cloud and D3FEND.Understanding of Risk Management principles. Experience in building, configuring, operating and/or securing cloud infrastructure and applications in AWS / Azure with either native cloud service provider capabilities or 3rd party vendor tools. Ability to independently assess risks and identify vulnerabilities in infrastructure with an eagerness to suggest new processes, policies, and overall improvements to internal security controls.
You will have experience partnering with incident response teams, threat intelligence researchers, Red/Purple teams, and/or HUNT researchers. Familiarity with common Information Security and data protection frameworks and standards (i.e. CIS, NIST, HIPAA, GDPR, PCI DSSS, ISO (phone number removed)) and have an ability to navigate and collaborate effectively within a geographically complex and dispersed global corporation. You will typically have Eight (8) or more years relevant Cyber Security experience with at least five (5) years in Cloud SOC and/or Purple Team roles. It would be Preferable have the following Certifications, CCSP / CCSK, CISSP / CISM / Security +. If this sounds like an interesting role get in touch so that we can speak in more detail.