We are seeking a skilled SIEM Security Engineer for a 6-month contract to support the transition to a new SIEM system (Google SecOps). This role will also involve assisting with Threat Intelligence and SOC Analyst requirements. The applicant must reside and work from the UK and be willing to travel into the office up to 2 times a month when required.
Key Responsibilities:
SIEM Transition Support:
* Assist in the planning and execution of the transition to a new SIEM platform.
* Configure, manage, and optimise the new SIEM system.
* Develop and implement SIEM use cases, rules, and alerts to ensure effective threat detection.
* Build processes to collect and aggregate log data from various sources such as servers, applications, and network devices.
* Collect, analyse, and integrate threat intelligence into the new SIEM system.
* Provide actionable threat intelligence to relevant stakeholders.
* Stay updated on the latest threat landscape and emerging cyber threats.
SOC Analyst Support:
* Collaborate with SOC analysts to investigate and respond to security incidents.
* Provide guidance and support in incident response and remediation efforts.
* Conduct root cause analysis and recommend improvements to enhance security posture.
Collaboration and Reporting:
* Work closely with other security teams to ensure a smooth transition and comprehensive threat detection.
Experience Required:
* 3+ years of experience in SIEM management and security operations.
* Proven experience with SIEM platforms.
* Experience working on SIEM Transition/Transformation projects.
* Experience working with typical log collection methods (e.g. Syslog, Agent-based - NxLog etc).
* Excellent analytical, problem-solving, and communication skills.
* Familiarity with SOC operations and incident response processes.
Experience Desired:
* Google SecOps.
* AlienVault.
* Curate and deliver threat intelligence reporting.
Please apply to the advert for more information.
#J-18808-Ljbffr