Obtain a bachelor's or master's degree in engineering.
Good knowledge in dealing with Engineering.
The ability to plan efficiently and accurately
The ability to design facilities and ensure the required specifications.
Proficiency in project management and ...
...Dhabi, United Arab Emirates | Posted on 01/26/2024
Job Description: CyberGate Defense, a leading cybersecurity company, is seeking a SIEM Admin Engineer with 4 -6 years of experience to join our team. The successful candidate will be responsible for the administration...
...Case Development - min 2 Years
Role and responsibility -
The role requires a details-oriented professional who will provide SIEM support to our pre-sales teams and support the delivery of SIEM solutions to our customers.
The SIEM Expert will be called upon to...
...Case Development - min 2 Years
Role and responsibility -
The role requires a details-oriented professional who will provide SIEM support to our pre-sales teams and support the delivery of SIEM solutions to our customers.
The SIEM Expert will be called upon to...
...administration, and networking
~ Good understanding of the cyber security landscape and security concepts
~ Knowledge in using at least 2 SIEMs is a plus
~ Preferably has Security-related certification
Skills and Attitudes:
Willingness to work in a 24 x 7...
...various systems, including network devices, servers, and applications, using Splunk or other security information and event management (SIEM) tools. - Incident Detection and Triage: Identify and investigate potential security incidents based on the analysis of log data,...
...firewalls, proxies, WAFs, DLP, malware detection/EDR, etc.
# Operational experience with security logging, event correlation, and SIEM technologies.
# Operational experience configuring and managing virtual and cloud-based environments.
# Develop and implement incident...
...advanced network traffic filtering.
.
Utilize Azure Security Center for continuous security assessment and Azure Sentinel for SIEM (Security Information and Event Management).
.
Ensure data encryption at rest using Azure Disk Encryption and in transit...
...Coordinating and conducting event collection, log management, event management, compliance automation and identity monitoring activities using SIEM technologies.
Investigate incidents using SIEM and Bigdata technologies, packet captures, reports, data visualization and...
...performing periodic system health checks.
# Acknowledge, analyse and validate incidents triggered from correlated events through SIEM solution
# Escalate validated and confirmed incidents to SOC Analyst
# Undertake first stages of false positive and false negative...
...understanding of network protocols, system logs, andsecurity event management.
Proficient in using various security tools, such as SIEM, IDS/IPS,EDR, and forensic analysis tools.
Familiarity with cloud platforms, network security, and emergingtechnologies....
...investigation & response, vulnerability management, and continuous improvement services
Enable to provide a comprehensive and integrated SIEM and XDR capabilities across Identities (MDI), Endpoints (MDE), Email (MDO), Apps (MDA), and Data (Purview) using Microsoft 365...
...with industry best practices and government regulations.
Design and configure security monitoring tools and technologies, including SIEM, EDR, and network traffic analysis solutions.
Analyse security alerts and events, identify potential threats, and escalate...
...movement.
· Seek out indicators of compromise and update security devices such as Firewalls, Web Application Firewalls, Email Gateway, SIEM etc.
· Develop custom detection rules & queries to identify threats in Cloud IaaS, PaaS, API abuse, On-prem environments.
· Work...
...The SOC Senior Engineer, Splunk, is a critical role responsible for delivering SIEM management services, particularly focusing on Splunk, within the Security Operations Center (SOC). Working closely with the SOC Principal Engineer, SIEM, this role encompasses onboarding...
...Conduct digital forensics to analyse and understand the root causes ofincidents.
Oversee and optimise security technologies, such as SIEM (Security Informationand Event Management), IDS/IPS, EDR (Endpoint Detection and Response), andfirewall solutions.
Conduct...
...Responsibilities:Deliver Splunk SIEM management services within the SOC environment.Collaborate with the SOC Principal Engineer, SIEM, in onboarding new log sources to the SIEM platform.Maintain and govern SOC critical log sources, ensuring their proper functionality...
...Monitor security alerts and events generated by security information and event management (SIEM) systems and other security tools. Analyze and investigate security incidents to determine the root cause and impact.
Conduct in-depth analysis of network traffic and...
...CISA
Strong understanding of cyber security principles, methodologies, and best practices
Experience with incident response tools, SIEM platforms, and forensic analysis tools
Familiarity with security frameworks such as NIST, ISO 27001, or CIS
Knowledge of...
...technologies and services, based on defined criteria.
Review the configuration of Cybersecurity technologies, including Firewalls, IPS/IDS, SIEM, Endpoint security, IAM solutions, and others.
Assist in conducting assessments to identify gaps and maturity levels of...
...of security frameworks standards and best practices (e.g. ISO 27001 PCI)
Experience with security tools and technologies such as SIEM vulnerability scanners intrusion detection/prevention systems and packet analysis tools
Maintain complete technical...
...threat andvulnerability analysis as well as in providing security advisory services.
Detailed Knowledge about various tools like –SIEM, SSL, Packet Analysis, HIPS/NIPS, Network Monitoring tools, Remedy,Service Now Ticketing Toolset, Web Security, AV, UBEA, Advanced...
...computer networks for security issues (Network Scanning / VA).
Investigate security breaches and other cybersecurity incidents (SIEM).
Install security measures and operate software to protect systems and information infrastructure, including database security and...
...systems;
Knowledge of how network attacks, attacks on infrastructure, attacks on web applications occur;
Experience in operating SIEM systems(Splunk as a plus);
Knowledge of the threats of modern IT technologies;
Knowledge and experience with Mitre ATT&CK....
...Prepares the disaster recovery plan
The attributes we seek include:
•Bachelor degree
•Good experience in maintaining and developing SIEM/SOC (Preferable ArcSight or McAfee)
•Firewalling /IPS knowledge – preferable Palo Alto and Fortinet products (policies and...
...BS/BE or MS degree in IT, Computer Science or equivalent required.
~8+ years of experience in one or more of the following areas: SIEM administration, linux OS administration, networking, Windows OS, EDR, Sentinel and NDR.
~3+ years of experience with SOAR platforms...
...preventive measurements and strategies to prevent repeated cases
Good experience in using Security tools such as Endpoint, IAM, SIEM, Vulnerability scanning and etc
Holding IT Security certifications such as CISSP, CISA, CEH and other relevant IT certifications...
...with industry best practices and government regulations.Design and configure security monitoring tools and technologies, including SIEM, EDR, and network traffic analysis solutions.Analyse security alerts and events, identify potential threats, and escalate incidents...
...environment and prioritize based on impact and likelihood
Conduct regular and ad hoc threat hunting activities utilizing the existing SIEM only
Oversee and handle Use Case Management life-cycle
Requirements:
Experience in Creating Target Operating Models (...
...out with short term and long term solutions for the organisation
Good experience in using Security tools such as Endpoint, IAM, SIEM, Vulnerability scanning, Cloud Security and etc
Holding IT Security certifications such as CISSP, CISA, CEH and other relevant IT...