L1 SIEM Engineer

This listings application deadline has expired so it is probably out of date

View all jobs →

Job Description

The candidate will be responsible for configuration, implementation, testing and performance enhancements for SIEM infrastructure (loggers, connectors, forwarders). The candidate should have some architectural design experience as well as hands-on experience with SIEMs.

Role Requirements

  • Responsible for configuration, implementation, testing and performance enhancements for SIEM appliances (loggers, smart connectors, forwarders).
  • Be able to work in a rapid paced security operations environment.
  • Work with systems engineers, enterprise architects, systems administrators and other technical staff on the implementation, testing, deployment, and integration of computing systems.
  • Interact with users and evaluate vendor products.
  • Create, maintain, and implement documentation and maintain standard operating procedures.
  • Application of security settings and other commercial best practices such as analysis services from the SIEM.
  • Application of open source and commercial threat intelligence feeds into the SIEM.
  • The role requires the individual to demonstrate technical center of excellence and subject matter expertise in agreed security subject areas in customer scoping sessions, and in customer projects.
  • The role requires the individual to operationally deliver on SLA-based managed security services in security operations environments.
  • The role requires the individual to identify security opportunities in current customers or prospective customers by knowing and promoting the approved cybersecurity offerings.
  • Complete daily health checks of various SIEM components and remediate issues of low complexity.

Candidate Requirements

  • Diploma or Degree in IT or Computer Science
  • Knowledge of overall ICT solutions, in particular cloud and data security architectures
  • One or more these industry Cybersecurity Certifications: CISM, CISA, CISSP-ISSEP, CISSP-ISSAP, GIAC Certified Incident Handler (GCIH), Certified Computer Security Incident Handler (CSIH), CEH, OSCP, CompTiA Linux+, Security+
  • Minimum of three (3) years of work, 2 of which should be of relevant experience in SIEM engineering in a Security Operations Center [SOC] or (NOC).
  • Experience with securing various environments preferred.
  • Experience in working across security technologies.
  • Managed security services experience across complex architectures.
  • In depth understanding of the role of SIEM engineering tools and
  • dashboards.

Method of Application

Applications are invited from suitably qualified candidates to fill the role highlighted above. Please forward your Application and CV to clearly indicating the title of the Job applied for in the subject, and complete the questionnaire in the link here.

Application deadline
6 Feb 17:00