Job Details
Experience Needed:
Career Level:
Education Level:
Salary:
Job Categories:
Skills And Tools:
Job Description
Job Title: SIEM Admin Engineer
Job Description: CyberGate Defense, a leading cybersecurity company, is seeking a SIEM Admin Engineer with 4 -6 years of experience to join our team. The successful candidate will be responsible for the administration of SIEM Tools and developing custom parsers.
Deep knowledge of QRadar/ Arcsight, other SIEM technology expertise also helpful.
Security operations experiences such as incident management, intrusion detection, firewall deployment, and security event analysis
Experience with security devices and general IT installations, configuration, and troubleshooting (e.g. Firewall, IDS, etc.)
Development of custom parsers,Use Cases and fine-tuning the UseCase based on the inputs from the SOC team
Handle day-to-day activities required to achieve and maintain SIEM Operational
Perform upgrades on the QRadar/ Arcsight SIEM components
Deploy new Console, Event Processor, Data Node & Collector as required to collect data feeds
Investigate and debug alerts generated in console.
Review configurations for potential security weaknesses.
Develop Content including rules, reports, and dashboards
Perform QA (Quality Assurance) function on content developed by other parties
Health checks that need to be performed on the SIEM.
Excellent communication and customer interaction skills
BenefitsTax-free Salary
Family Medical Insurance
Job Description: CyberGate Defense, a leading cybersecurity company, is seeking a SIEM Admin Engineer with 4 -6 years of experience to join our team. The successful candidate will be responsible for the administration of SIEM Tools and developing custom parsers.
Deep knowledge of QRadar/ Arcsight, other SIEM technology expertise also helpful.
Security operations experiences such as incident management, intrusion detection, firewall deployment, and security event analysis
Experience with security devices and general IT installations, configuration, and troubleshooting (e.g. Firewall, IDS, etc.)
Development of custom parsers,Use Cases and fine-tuning the UseCase based on the inputs from the SOC team
Handle day-to-day activities required to achieve and maintain SIEM Operational
Perform upgrades on the QRadar/ Arcsight SIEM components
Deploy new Console, Event Processor, Data Node & Collector as required to collect data feeds
Investigate and debug alerts generated in console.
Review configurations for potential security weaknesses.
Develop Content including rules, reports, and dashboards
Perform QA (Quality Assurance) function on content developed by other parties
Health checks that need to be performed on the SIEM.
Excellent communication and customer interaction skills
BenefitsTax-free Salary
Family Medical Insurance