変化を受け入れる
新たな可能性を生み出す。

Job Purpose and Impact

The Sr. Consultant, Core Cyber Operations - SIEM job enhances our security operations by supporting the maintenance, operation, and improvement of the Security Information and Event Management (SIEM) platform. The ideal candidate will have a strong background in cybersecurity, automation, and data analytics, and will be responsible for developing and implementing security solutions that improve our threat detection and response capabilities. With minimal supervision, this job supports the following functions

Key Accountabilities

·SECURITY ANALYTICS: Utilize advanced data analytics techniques to identify and mitigate security threats. Develop and maintain security metrics and dashboards to provide insights into security posture and incident trends.

·SOAR IMPLEMENTATION: Design, implement, and manage SOAR solutions to automate incident response processes. Integrate SOAR platforms with existing security tools and workflows to enhance efficiency and effectiveness.

·SOC ALARM OVERSIGHT: Develop, test, and maintain Security Operations Center (SOC) alarms to ensure accurate and timely detection of security incidents. Regularly review and update alarm configurations to adapt to evolving threats and improve detection capabilities. Collaborate with SOC analysts to validate alarm effectiveness and minimize false positives.

·AUTOMATION: Develop and deploy automation scripts and tools to streamline security operations. Collaborate with cross-functional operations teams to identify opportunities for automation and improve overall security posture.

Qualifications

ESSENTIAL FUNCTIONS

CYBER SERVICES VISIBILITY: Designs and operates to assure situational visibility for all cyber services, including foundational cyber analytics and automation.

MINIMUM & TYPICAL YEARS OF WORK EXPERIENCE

·Minimum requirement of 4 years of relevant work experience. Typically reflects 5 years or more of relevant experience.

·Strong knowledge of cybersecurity principles, threat detection, and incident response.

·Proven experience in security analytics, SOAR, and automation.

·Proficiency in scripting languages such as Python, PowerShell, or Bash.