The role will involve working in their global security team and will be responsible of helping develop effective security controls.
Key responsibilities will include:
- Working closely with the in-house security operations team to drive world class threat detection
- Building effective detection use cases within the chosen SIEM while minimizing false positives.
- Utilize online resources for researching and collecting threat intelligence to enhance the SOC’s abilities to detect cyber-attacks.
- Utilize telemetry available throughout the environment to build and improve detection capabilities.
- Testing of existing and new detection use cases
- Participation in security incidents/ investigations
Key skills needed for the role:
- Experience of SIEM administration – Splunk or Exabeam preferred but other SIEM tools considered
- Broad technical information security knowledge including networking, malware analysis, incident response and
- Knowledge of information security protection, detection and authentication systems
- Understanding of tools, techniques and procedures that attackers use to compromise organizations, ideally from direct experience.
- Basic python\ AWS experience
Please send your CV for immediate review