Siem Threat Detection - Madrid, España - Source Group International

Source Group International
Source Group International
Empresa verificada
Madrid, España

hace 3 semanas

Isabel García

Publicado por:

Isabel García

beBee Recruiter
Descripción

Posted:

  • Today
  • Sector:
  • Cyber Security
  • Location:
  • Madrid, Spain
  • Job Ref:
  • BH Job Type:
  • Contract
  • Salary:
  • Competitive
  • Expiry date:
  • 6/28/2023 Contact:


  • Jayden Posener

  • We are seeking a skilled and experienced SIEM Threat Detection Engineer.
100% Remote comtract

6-12 months

English Speaking - Spanish is a advantage


As a SIEM Threat Detection Engineer, you will play a crucial role in ensuring the security and integrity of our organization's systems and data by monitoring and detecting potential threats using Security Information and Event Management (SIEM) tools.


Responsibilities:


  • The objective is to create and maintain detection and hunting content (i.e. detection rules, hunting queries, reports, config files) in the SIEM products
  • Conduct indepth analysis of security events to determine the nature and severity of threats, and take appropriate actions to mitigate risks.
  • Develop and maintain threat detection rules, correlation rules, and use cases to improve the accuracy and efficiency of the SIEM system.
  • Collaborate with the incident response team to investigate and respond to security incidents, including conducting forensic analysis and implementing remediation measures.
  • Stay uptodate with the latest security threats, vulnerabilities, and industry best practices to continuously improve the organization's security posture.
  • Provide recommendations for security enhancements and assist in the implementation of security controls.
  • Conduct regular audits and assessments of the SIEM system's effectiveness and propose improvements or optimizations.

Requirements:


  • Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications (e.g., CISSP, GCIH, GCIA) would be a plus.
  • Proven experience working with SIEM tools, such as Splunk, IBM QRadar, Elastic.
  • Knowledge of QRadar rules editing interface, Splunk SPL and Elastic KQL
  • Solid knowledge of threat intelligence, intrusion detection, and incident response techniques.
  • Experience in developing and tuning SIEM correlation rules and threat detection signatures.
  • Creation of reports and dashboards in one or more of the above mentioned tools.
  • Excellent analytical and problemsolving skills, with the ability to quickly identify and respond to security incidents.
  • Strong communication and collaboration skills to work effectively with crossfunctional teams.
Más ofertas de trabajo de Source Group International
Ver todas las ofertas de empleo de Source Group International