Cyber security engineer

Cyber security engineerCyber security engineer with an analytical mind and a detailed understanding of cybersecurity methodologies,and should have proven hands-on experience on SIEM design, deployment and management, and have understanding of events, related fields in log records and alerts reported by various data sources/tools such as Windows/Unix systems, Firewalls, IDS/IPS, Endpoint Security Tools (AV, EDR, HIDS / HIPS) DLP, WAFs, Active Directory, SCCM, PKI Infrastructure, web proxies, FIM, DAM, IAM, PAM and other network devices. Roles and responsibilities:· Develop advanced SIEM correlation rules, reports and dashboards to detect emerging threats· Manage, develop and tune the scripts that integrate SIEM· Monitor the impact of deploying new content to the health and performance of the SIEM· Develop advanced reports to meet the requirements of key stakeholders· Develop scalable security management tools and processes.- Monitoring the health of the log sources.- Implementing use cases as required by Security Intel team.- Generating reports as required by SOC management teams.- Engages in technical problem solving across multiple technologies; often needs to develop new methods to apply to the situation.- Collaborate with security operations centre (SOC) analysts to optimize the SIEM performance to better serve the needs of the business and create adequate visibility on information assets/infrastructures of interest.Requirements:Education: A bachelor’s degree in Information Technology, Computer Science or equivalent is required.Experience: 1-4 years in administration of the SIEM and troubleshooting, such IBM Qradar and Logrythem, and Splunk.Skills:- Experience with tools such as Linux, Syslogng/Rsyslog- Experience in administration of IBM Qradar and Logrythem and Splunk components & troubleshooting.- Good understanding of Syslog Management & Configurations along with Networking protocols & Security standards.- Handsome experience in SIEM administration and Event flow architecture and different types of logs generated by devices like Windows, Proxy, Network Devices, Database…etc.- Good Understanding of Firewall, IDP/IPS, SIEM functioning (Generalize HLD as well as LLD).- Deep understanding on Windows, DB, Mail cluster, VM and Linux commands.- Knowledge of network protocols TCP/IP and ports.