The Opportunity

Our client is a leading digital engineering company with a global presence spanning 11 countries. They are looking for a security engineer to support the provisioning of Advanced Security Operations Centre (ASOC/Managed SIEM) services, they are looking for a Senior Cyber Analyst (SIEM) Engineer experienced in Splunk and Microsoft Sentinel.

This role will work closely with technical customer teams, vendors and SOC engineering teams.

Position Responsibilities

• Tune the SIEM tool (Splunk and MS Sentinel) security policy with use cases, threat libraries, and watch list details for better threat detection and threat recognition;

• Work directly with customers to understand their application and log onboarding requirements. Facilitate discussions and offer leadership and guidance in meeting best practice for their organisation. Incorporate and consider asset landscape, severity ranking, and business impact details into log ingestion requirements and use case development;

• Passive threat analysis and incident investigation;

• Develop guidance on mitigation strategies and defense techniques relative to trends and events in the global threat landscape;

• Assist security staff with incident management, security strategy, and publication of security intelligence;

• Facilitating information exchange amongst Verizon, the customer, and the customer’s third parties (if applicable) during an incident;

• Provide assistance with proactive services that help with prepare, recognize, and respond in anticipation to a specific attack or known attack patterns:

• Applying lessons learned from past incidents to improve the customer’s CERT basic processes and practices;

• Provide regular feedback on day-to-day incident management and response;

• Help develop and maintain processes and methodologies in preparation for specific and probable threats;

• Trigger the customer’s Investigative Response Retainer (if applicable).

• After proper remediation or containment, close the incident and provide root cause analysis, lessons learned, and additional recommendations on how to prevent a similar incident;

• Monitor the global threat and vulnerability landscape. Participate in Verizon’s weekly intelligence calls and intelligence summary reports.

Required Skills & Experience:

• Bachelor’s degree in Computer Science or related field is preferable, plus at least 5 years’ experience in a dedicated security position

• Strong communication skills and ability to engage with customers at both technical and executive levels

• Clear and concise written and oral English, including the ability to product professional-level documentation

• Strong problem-solving and security analytics skills; able to identify gaps in processes and recommend improvements for mitigation

• Strong leadership skills and a proactive approach to customer issues

• Ability to excel in high pressure environments

• Strong Splunk AND Microsoft Sentinel (Azure Security) analytics and configuration skills

Click Apply if you think you would be a great fit!