Naukrijobs UK
Register
London Jobs
Manchester Jobs
Liverpool Jobs
Nottingham Jobs
Birmingham Jobs
Cambridge Jobs
Glasgow Jobs
Bristol Jobs
Wales Jobs
Oil & Gas Jobs
Banking Jobs
Construction Jobs
Top Management Jobs
IT - Software Jobs
Medical Healthcare Jobs
Purchase / Logistics Jobs
Sales
Ajax Jobs
Designing Jobs
ASP .NET Jobs
Java Jobs
MySQL Jobs
Sap hr Jobs
Software Testing Jobs
Html Jobs
IT Jobs
Logistics Jobs
Customer Service Jobs
Airport Jobs
Banking Jobs
Driver Jobs
Part Time Jobs
Civil Engineering Jobs
Accountant Jobs
Safety Officer Jobs
Nursing Jobs
Civil Engineering Jobs
Hospitality Jobs
Part Time Jobs
Security Jobs
Finance Jobs
Marketing Jobs
Shipping Jobs
Real Estate Jobs
Telecom Jobs

Lead SIEM Engineer

Aggregator Network
Job LocationNottingham
EducationNot Mentioned
SalaryCompetitive salary
IndustryNot Mentioned
Functional AreaNot Mentioned
Job TypePermanent, full-time

Job Description

The Cyber Threat Detection team, which is part of Refinitivs Cyber Information Security (CIS) organization, seeks an experienced IBM QRadar SIEM engineer that will be based out of our London or Nottingham office. This role is part of a globally distributed team that is responsible for providing our Security Operations Center with an elite SIEM platform.The successful candidate will play a key role in maintaining and improving our cyber threat detection capabilities against a constantly evolving cyber threat landscape.Crucial Responsibilities:

  • Responsible for the operational readiness of the SIEM and syslog ingestion layer
  • Lead all aspects of on-boarding of log sources from a diverse population of enterprise end points
  • Onboard new application and platform logs via syslog, endpoint agents, and APIs
  • Capture use case requirements for the development of correlation rules and reports
  • Maintain a detection mapping against the MITRE ATT&CK framework to identify and close gaps
  • Handling of SIEM Change Requests (upgrades, tuning, break fixes etc.)
  • Remediate ongoing and new SIEM Application defects / process failures
  • Develop and maintain dashboards, reports, and alerts
  • Develop and maintain custom parsers for unsupported log sources
  • Lead tuning meetings with SOC personnel for false positive reduction
  • Build and maintain operational documentation to support SIEM platform
    • Qualifications / Requirements:
  • Bachelors Degree in Information Systems / Technology, Computer Science / Engineering or equivalent field of study or a minimum of 4 years of work experience in an Information Technology field
  • 4+ years in an IT security engineering role
  • 2+ years of work experience with IBM QRadar or similar SIEM platform in an engineering/consultative capacity
  • Solid understanding of Linux and Windows operating systems
  • Solid grasp of network transport protocols and services (TCP/IP, Syslog, ODBC, SFTP, SSH, PKI, DNS, HTTP/S etc.)
  • Hands-on knowledge of syslog-ng or rsyslog log daemons a plus
  • General scripting proficiency (i.e. BASH, Python, Perl, etc.) a plus
  • Able to optimally research, analyze, and resolve sophisticated problems with minimal direction
  • Possess excellent written and verbal communication skills
  • Evening and weekend hours expected during system outages
  • Travel (including international) may be required up to 15%.
    • Certifications: Any SANS certification will be given consideration with special preference toone or more of the following: GMON, GDSA, GCDA, GDATWe care about benefits too.We support our colleagues wellbeing with inclusive benefits. So thats support for physical, financial, mental and environmental health, paid time off to volunteer, consumer discounts & savings and so much more. All of which are tailored to your needs and may vary by location. For more details talk to your recruiter.Our fast paced and supportive environment is only possible due to determined, autonomous problem solvers who love our high performance culture. And as a global business, Refinitiv relies on diversity of culture and thought to deliver on our goals. So we seek hardworking, qualified employees in all our operations around the world-regardless of race, color, sex/gender, including pregnancy, gender identity and expression, national origin, religion, sexual orientation, disability, age, marital status, citizen status, veteran status, or any other protected classification under country or local law. Refinitiv is proud to be an Equal Employment Opportunity/Affirmative Action Employer providing a drug-free workplace.Refinitiv makes reasonable accommodations for applicants and employees with disabilities. If an accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact us to request an accommodation. A full list of our office locations and contact information can be found at: Refinitiv Office Locations .Be the breakthrough, activate your future and shape ours.

    APPLY NOW

    Lead SIEM Engineer Related Jobs

    © 2019 Naukrijobs All Rights Reserved