SIEM Engineer Senior

Job Description:
Primary Skills: Networking, Cyber Security, SIEM tool (Splunk, IBM QRadar, ArcSight, LogRhythm, etc.)
Secondary Skills: Scripting languages (e.g., Python, Bash, PowerShell)
Design, architect, and lead the implementation of SIEM solutions such as Splunk, IBM QRadar, ArcSight, or Microsoft Sentinel for enterprise environments.
Develop advanced threat detection use cases, correlation rules, and analytics models to enhance proactive security monitoring
Lead threat-hunting initiatives and advanced log analysis to identify sophisticated cyber threats and anomalies
Integrate SIEM solutions with SOAR, threat intelligence platforms, and other security technologies to improve incident response efficiency
Optimize SIEM performance, fine-tune log sources, and enhance scalability for large-scale security operations
Automate threat detection, incident response, and log enrichment using Python, Bash, PowerShell, or other scripting languages
Collaborate with SOC teams, security analysts, and cloud security teams to continuously enhance monitoring strategies
Ensure compliance with security frameworks such as NIST, ISO 27001, PCI-DSS, and regulatory mandates through log management and reporting
Provide mentorship and technical leadership to junior SIEM engineers, ensuring best practices and knowledge sharing
Conduct security architecture reviews and provide recommendations for SIEM optimization and security analytics improvement
6+ years of hands-on experience in SIEM administration, advanced log analysis, and threat detection engineering
7+ years of experience in cybersecurity, security monitoring, SOC operations, or threat intelligence
Extensive knowledge of log sources, parsing, event correlation techniques, and SIEM data normalization.
Strong expertise in cloud security monitoring, log management, and SIEM integration with AWS, Azure, or Google Cloud.
Relevant certifications such as Splunk Enterprise Security Certified Admin, IBM QRadar Certified Deployment Professional, GIAC Security Operations Certified (GSOC), or CISSP are highly preferred.

Behavioral Competencies:

Proven experience of delivering process efficiencies and improvements
Clear and fluent English (both verbal and written)
Ability to build and maintain efficient working relationships with remote teams
Demonstrate ability to take ownership of and accountability for relevant products and services
Ability to plan, prioritize and complete your own work, whilst remaining a team player
Willingness to engage with and work in other technologies

Note: This job description is a general outline of the responsibilities and qualifications typically associated with the Virtualization Specialist role. Actual duties and qualifications may vary based on the specific needs of the organization.

Skills:

• Identity and Access Mgt (IAM)
• Python
• Security Infrastructure Supprt
• Unix