Security Engineer

Responsibilities

• Configure and administer the SIEM to support the needs of SOC.
• Responsible for maintaining the health of the SIEM tool and ensuring agreed uptime of the respective platform.
• Perform regular patching and version upgrades on the SIEM platform.
• Configure respective parsers, forwarders (engage principal vendors if needed) to integrate various log sources with SIEM platform for log monitoring.
• Research, build, and maintain detection capabilities for the latest threats across SIEM, log analytic, and security tool platforms.
• Ensure real time data and Configuration replication between Primary and DR sites.
• Integrate data feeds (logs) into SIEM/Splunk from on-premises and cloud deployed devices and applications.
• Explore leading cybersecurity products. Work with 3rd party security consultants and service providers to ensure all security aspects are covered. Operate security solutions such...