SIEM SME
Apply NowCompany: Futran Tech Solutions Pvt. Ltd.
Location: Plano, TX 75025
Description:
Role: SIEM SME
Plano, Texas - Day 1 Onsite
We are looking for a highly skilled and experienced SIEM Engineer with expertise in Cribl and Infrastructure performance. As a SIEM Engineer, you will be responsible for the design, implementation, and maintenance of our Security Information and Event Management (SIEM) system. You will support and manage Sentinel and the entire SIEM dev stack, and be responsible for proactive monitoring of log sources, onboarding of new log sources, and assist with new searches and additional capabilities as needed. In tandem with security leadership, this role consistently assesses the threat landscape and adapts quickly to protect the business from risk. They must be highly technical and possesses at least 3-5+ years? experience in security across a wide variety of security domains to include governance and compliance, cloud security architecture, with knowledge of software as a service (SaaS), infrastructure as a service (IaaS) and platform as a service (PaaS).
What You'll Do:
Position Requirements
What You'll Need:
Plano, Texas - Day 1 Onsite
We are looking for a highly skilled and experienced SIEM Engineer with expertise in Cribl and Infrastructure performance. As a SIEM Engineer, you will be responsible for the design, implementation, and maintenance of our Security Information and Event Management (SIEM) system. You will support and manage Sentinel and the entire SIEM dev stack, and be responsible for proactive monitoring of log sources, onboarding of new log sources, and assist with new searches and additional capabilities as needed. In tandem with security leadership, this role consistently assesses the threat landscape and adapts quickly to protect the business from risk. They must be highly technical and possesses at least 3-5+ years? experience in security across a wide variety of security domains to include governance and compliance, cloud security architecture, with knowledge of software as a service (SaaS), infrastructure as a service (IaaS) and platform as a service (PaaS).
What You'll Do:
- Design, implement, and maintain our SIEM system using Sentinel.
- Design, implement, and maintain our log ingestion capabilities using Cribl.
- Monitor and analyze availability, capacity, and performance
- Help identify and onboard new data/log sources that increase security visibility against use cases
- Collaborate with other security and IT teams to implement security best practices and ensure the security of our systems and data.
- Manage and maintain SIEM infrastructure and software, including upgrades and patches.
- Provide training and support to other teams on the use of Sentinel and SIEM best practices.
Position Requirements
What You'll Need:
- Bachelors degree in Information Technology, Telecommunications or Engineering preferred or related work experience.
- Minimum of 4 years of experience directly related to technical area of expertise
- Strong experience with Cribl and Sentinel, including deployment, configuration, and administration
- Experience with security event correlation and analysis, incident response, and forensic analysis.
- Knowledge of security threats, including malware, hacking techniques, and attack vectors.
- Strong knowledge of networking, security protocols, and firewalls.
- Ability to manage multiple projects and priorities in a fast-paced environment.
- Excellent communication and collaboration skills.
- Experience with Cribl is desirable but not required.