SIEM Automation Engineer
EntelligenceTustin, California6 days ago
Job type
- Full-time
Job descriptionStrong communication (written and verbal) and presentation skills, both internally and externally Fluent English is a requirement - Any other language is a plus 3+ years of deploying and integrating (SIEM) to enterprise to large enterprise-level Coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring activities using (SIEM) platforms The ability to create and develop correlation and detection rules, within a (SIEM) to support alerting capabilities Experience working with and deploying a variety of SIEM technologies (i.e Splunk, IBM QRadar) A proven ability to offer suggestions on detection strategy based on customer requirements Ability to understand logs, locating and understanding 3rd party documentation where needed Familiarity with reports on the status of the SIEM to include metrics on items such as number of logging sources - log collection rate, and other performance metrics Knowledge of Security Analysis & Response a plus, including both endpoint, network & cloud based environments 3 years experience with Security Operation Centers tooling and processes Relevant bachelor's degree or industry recognized qualifications (CISSP, GIAC, SIEM Vendor Qualification etc) Ability to read and understand technical design documentation Ability to create technical design documentation Competitive base salary Medical, dental, vision and life insurance Vacation, sick time and paid holidays Matching 401(k) program
Entelligence is seeking an Engineer to support our clients. The successful candidate must be able to work in a cross-functional environment and interact with representatives from Entelligence, the client, and the end-user.
As an Engineer for Cortex XSIAM, you will be responsible for assisting with the log migration and detection strategy of our customers. You will work closely with the technical lead to ensure that all of the relevant log sources are onboarded and ingested into XSIAM in accordance with industry best practices and customer requirements. You will then work to determine a suitable detection strategy, helping to protect customers from threats, by designing and implementing correlation rules.
RESPONSIBILITIES :
- Work with technical lead to develop log ingestion strategy
- Contribute to detection strategy based on industry best practices
- Detail step by step process to ingest high quality log sources
- Perform log source monitoring and optimization
- Create high quality correlation rules
- Tune log sources and correlation rules
- Be an SME for SIEM, Correlation and Log Source Ingestion
- Recognize opportunities where automation can improve analyst alert handling
- Collaborate with internal and external teams to ensure product adoption
- Create technical documentation detailing SIEM aspects of the engagement
- Travel to customer meetings and workshops as needed (10%)
JOB REQUIREMENTS :
BENEFITS
Create a job alert for this search
Automation Engineer • Tustin, California
Related jobs
A company is looking for a Cortex XSIAM Consultant to join a premier cyber security organization remotely.Key Responsibilities Develop log ingestion strategies in collaboration with the technical...Show moreLast updated: 4 days ago
Anduril Industries is a defense technology company with a mission to transform U.By bringing the expertise, technology, and business model of the 21st century's most innovative companies to the def...Show moreLast updated: 30+ days ago
We are committed to bringing better access to better solutions - and a better life for those living with diabetes - with the world's first bionic pancreas called the iLet.The iLet Bionic Pancreas i...Show moreLast updated: 4 days ago
Looking to join a passionate team dedicated to developing and manufacturing life-saving biopharmaceuticals? Avid Bioservices is a leading clinical and commercial biologics CDMO focused on creating ...Show moreLast updated: 20 days ago
As part of the Security Operations Team, the candidate will work closely with their direct manager to identify potential use cases and report on metrics generated.
Taking ownership of the SIEM infra...Show moreLast updated: 30+ days ago
RP Professional Services is a rapidly growing Technology consulting firm headquartered in Virginia.We’re an 8a and Service-Disabled Veteran-Owned Small Business (SDVOSB) serving both federal a...Show moreLast updated: 30+ days ago
DGR Systems is seeking a skilled and experienced SIEM / SOAR Engineer to design and deploy solutions for our customers.This candidate will be responsible for the design, implementation, and optimiz...Show moreLast updated: 30+ days ago
Select how often (in days) to receive an alert : .We are seeking a highly skilled and experienced Lead Infrastructure Automation Engineer to drive and enhance our infrastructure automation initiative...Show moreLast updated: 30+ days ago
Supercharged customer acquisition.Centerfield delivers outcome-based digital marketing solutions and personalized omnichannel experiences for the world's leading brands.
Powered by our proprietary D...Show moreLast updated: 30+ days ago
Must Have Technical / Functional Skills.PowerShell scripting for automation and system administration.Active Directory and directory services.
Hands-on experience integrating with CyberArk using its R...Show moreLast updated: 30+ days ago
Anduril Industries is a defense technology company with a mission to transform U.By bringing the expertise, technology, and business model of the 21st century’s most innovative companies to the def...Show moreLast updated: 10 days ago
Title : Test Automation Engineer (Selenium) -.Candidates with LinkedIn profile will be preferred.Interview Process : Phone + Face to Face Interview (no Exceptions).NOTE : Locals or nearby ca...Show moreLast updated: 30+ days ago
Anduril Industries is a defense technology company with a mission to transform U.By bringing the expertise, technology, and business model of the 21st century’s most innovative companies to the def...Show moreLast updated: 30+ days ago
Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today’s most important industries.
Our growth is driven by delivering re...Show moreLast updated: 30+ days ago
This position will be onsite in Tustin, CA!.Responsibilities of the SIEM Engineer include : .Work with technical lead to develop log ingestion strategy.
Contribute to detection strategy based on indus...Show moreLast updated: 5 days ago
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day.
So why work at Kyndryl? We are always moving forward – always pushing ...Show moreLast updated: 30+ days ago
Remote SIEM Engineer
VirtualVocationsCosta Mesa, California, United StatesRemote
Full-time
Test Automation Engineer
Anduril IndustriesCosta Mesa, CA, USFull-time
Quality Assurance Automation Engineer
Beta BionicsIrvine, CA, USFull-time
- Promoted
Sr. Automation Controls Engineer
Avid BioservicesTustin, CA, United StatesFull-time
Senior Security Engineer (SIEM)
EpamRemote, USRemote
Full-time
Automation Engineer
RP Pro ServicesUSRemote
Full-time
Quick Apply
SIEM / SOAR Engineer
DGR Systems LLCUSRemote
Full-time
Quick Apply
Lead Infrastructure Automation Engineer
Singtel GroupSingapore, Michigan, SingaporeFull-time
QA Automation Engineer
CenterfieldAnaheim, CA, United StatesFull-time
Automation Engineer - Powershell
Diverse LynxIrvine, CA, USFull-time
- Promoted
Senior Controls Automation Engineer
PhylumCosta Mesa, CA, United StatesFull-time
- Promoted
Test Automation Engineer(Selenium)
Tekstrom IncIrvine, CA, USFull-time
Test Automation Engineer
AndurilCosta Mesa, California, United StatesFull-time
Lead SIEM Engineer
KPMG-UnitedStatesIrvine, CAFull-time
SIEM Engineer
Piper CompaniesTustin, CAFull-time
CISO Platform Engineering SIEM Engineer
WomenTech NetworkRemote, USRemote
Full-time