Browse
···
Log in / Register
Job Summary: We are seeking a SIEM engineer with experience in platform administration, security use case development, and security response automation. Key Responsibilities: 1. SIEM platform administration and rule optimization. 2. Development of security use cases based on MITRE ATT&CK. 3. Security response automation through SOAR. MANDATORY REQUIREMENTS: SIEM platform administration Install, configure, and maintain SIEM tools; manage log ingestion and normalization from multiple sources. Create, tune, and optimize correlation rules to detect threats. Develop security use cases based on MITRE ATT&CK. Integrate new devices and systems into the SIEM, validating correct event collection. Reduce false positives through use case optimization and tuning. Adjust rules and alerts to improve detection effectiveness. Security response automation through SOAR. Design automations considering our clients’ maturity level, adapting processes to each client. Support security analysts in alert investigation. Provide context and analysis for suspicious events. Document playbooks for implemented use cases. VALUABLE REQUIREMENTS: In-depth knowledge of SIEM and MDR tools, such as: Crowdstrike NGSIEM Microsoft Sentinel Rapid7 Experience in security incident response Knowledge of the MITRE matrix English proficiency at C1 level REQUIRED QUALIFICATION: Bachelor’s degree or equivalent in engineering or technology-related fields Other qualifications will be considered based on additional certifications YEARS OF EXPERIENCE IN THE REQUIRED PROFILE: 5
