Sr. IT Security Engineer

Total-TECH Co.

” The Job Description”

  1. Data Parsing: Configure data parsers to normalize and categorize log data for analysis.
  2. Rule Creation: Develop and maintain correlation rules to detect security incidents and anomalies.
  3. User Access Control: Manage user roles and permissions for the SIEM platform.
  4. Log Retention and Archiving: Define data retention policies and ensure log data is archived for compliance and forensic purposes.
  5. Software Updates and Patch Management: Keep the SIEM software up to date with the latest patches and updates.
  6. Integration with Other Security Tools: Integrate the SIEM with other security tools, such as intrusion detection systems (IDS) and vulnerability scanners.
  7. Fine-Tuning: Continuously optimize the SIEM to reduce false positives and improve detection accuracy.
  8. Compliance Reporting: Generate reports and alerts to comply with industry standards and regulations.
  9. Log Source Management: Add new log sources as the organization’s IT environment evolves.
  10. Disaster Recovery Planning: Develop and test disaster recovery plans to ensure the SIEM’s availability during critical incidents.
  11. Performance Monitoring: Monitor the SIEM’s performance and scalability, ensuring it can handle the volume of log data.
  12. Log Data Storage: Manage the storage infrastructure for log data, including backups and data retention policies.
  13. Threat Intelligence Integration: Integrate threat intelligence feeds to enhance the SIEM’s ability to detect new threats.
  14. Vendor and Support Management: Coordinate with SIEM vendors and support providers for technical assistance and updates.
  15. Security Policy Enforcement: Ensure that the SIEM helps enforce security policies and compliance requirements.
  16. Evaluate the logs form each log source and enhance it.

Tagged as: , ,

Upload your CV/resume or any other relevant file. Max. file size: 3 GB.

Job Overview
Job Location