SOC Engineer
Apply NowCompany: cillium corp
Location: Baltimore, MD 21215
Description:
Company Description
Job Description
Work with clients to determine log management and SIEM needs, evaluate
the client's existing systems, if any, develop a plan to fulfill the
client's needs with available resources, and execute the plan. Evaluate
log and SIEM needs, including the development of use cases to address
specific risks faced by the client, taking into consideration potential
data sources in the client's environment. Fulfill the client's needs,
deploy new systems, migrate to different systems, upgrade existing
systems, or create content for systems in place. Interact with the
client's security analysts, engineers, and data source owners. Work
individually, in small teams of 2 to 4 people, or in larger teams of 5
to 10 people, depending on the needs of the client
Qualifications
-3+ years of experience as an information security analyst or engineer
-Knowledge of log management and SIEM tools usage and architecture
-Ability to explain current information security threats, including
DDoS, botnets, malware, Advanced Persistent Threats (APT), buffer
overflows, SQL injection, and phishing
-Ability to develop use cases for detecting malicious and suspicious activity
-Ability to travel up to 75% of the time
Additional Information
All your information will be kept confidential according to EEO guidelines.
Job Description
Work with clients to determine log management and SIEM needs, evaluate
the client's existing systems, if any, develop a plan to fulfill the
client's needs with available resources, and execute the plan. Evaluate
log and SIEM needs, including the development of use cases to address
specific risks faced by the client, taking into consideration potential
data sources in the client's environment. Fulfill the client's needs,
deploy new systems, migrate to different systems, upgrade existing
systems, or create content for systems in place. Interact with the
client's security analysts, engineers, and data source owners. Work
individually, in small teams of 2 to 4 people, or in larger teams of 5
to 10 people, depending on the needs of the client
Qualifications
-3+ years of experience as an information security analyst or engineer
-Knowledge of log management and SIEM tools usage and architecture
-Ability to explain current information security threats, including
DDoS, botnets, malware, Advanced Persistent Threats (APT), buffer
overflows, SQL injection, and phishing
-Ability to develop use cases for detecting malicious and suspicious activity
-Ability to travel up to 75% of the time
Additional Information
All your information will be kept confidential according to EEO guidelines.