Join Our Talent Network

SIEM Engineer in 12 S Monroe St. Media, PA 19063 at SageNet

Date Posted: 7/11/2018

Job Snapshot

Job Description

Summary:

SageNet is seeking an experienced Security Information and Event Management (SIEM) Engineer who will be responsible for the deployment, configuration, and day-to-day management of customer SIEM environments in a 24x7x365 managed security services environment. The SIEM engineer must be able to analyze, troubleshoot, remediate, and create content within the client SIEM environments. The SIEM Engineer will work closely with both the SageNet Cybersecurity engineering and analysis teams, as well as the client IT teams, to ensure that the SIEM is configured correctly and performing to service expectations.    

 

Responsibilities:

  • Demonstrated integrity in a professional environment
  • Deep understanding of networking, systems management, and multiple security technologies and concepts
  • Deep understanding of SIEM deployment methodology and use cases
  • Comfortable working in a Linux shell to perform installations, upgrades, and troubleshoot problems for the OS and installed application stacks
  • Extensive understanding of data normalization and correlation methods and concepts
  • Excellent social, communication, and technical writing skills

Job Requirements

Requirements:

  • 4+ years IT Security operations experience required
  • 2+ years’ experience operating and deploying SIEM technologies in medium and large-scale corporate networks required
  • Experience creating and maintaining technical documentation required
  • Experience deploying and configuring Enterprise SIEM Toolsets (Splunk, QRadar, ArcSight, etc.) preferred
  • Experience with Elastic ELK (Elasticsearch, Kibana, Logstash) preferred
  • Experience with Splunk engineering, implementation, and content development preferred
  • Experience with scripting languages such as bash or python preferred
  • Experience with Amazon Web Services highly desired
  • AWS Associate or Professional Certifications highly desired
  • Splunk Professional Certifications highly desired