SIEM expert – Azure Sentinel

En remoto

CyberProof is a cyber security services and platform company whose mission is to help our customers react faster and smarter – and stay ahead of security threats, by creating secure digital ecosystems. CyberProof automates processes to detect and prioritize threats early and respond rapidly and decisively. CyberProof is part of the UST Global family. Some of the world’s largest enterprises trust us to create and maintain secure digital ecosystems using our comprehensive cyber security platform and mitigation services.

CyberProof is seeking a skilled and experienced SIEM expert – Azure Sentinel to join our CBB team.


What do you need to have:

  • Understand in depth Azure Sentinel & features including KQL
  • Understand Azure security Stack and different Azure security components
  • Understand in depth different ways of onboarding a log source and T&S
  • Developing new SIEM rules, correlations, dashboards to meet the customer needs
  • Assist in the creation and verification of Statement of Work (SOW) documentation
  • Assist Architecture, RFP’s and client technical meetings
  • Assist client with technical guidance to configure log sources in-scope to be logged to the SIEM
  • Verification of data of log sources in the SIEM

Requirements:

  • Experience with Azure Sentinel – creating detection rules, workbooks and reports
  • Excellent familiarity with the Azure Sentinel components
  • Excellent familiarity with different security attack vectors and means of protection
  • Minimum 4 years experience in a similar role
  • Preferred SIEM vendor certification of administrator
  • Experience and proficient in UNIX/Linux and/or Regular Expressions.
  • The following certifications would be considered as advantage: CISSP, CISM, CompTIA Security+, CEH, GSEC

 

Cyberproof

Salario:

Tags: Remoto

Empleo original