A - Accountabilities : Ability to develop, update and configure custom rules within CSOC security technologies Develop dashboards and reports to identify potential threats, suspicious / anomalous activity, malware, etc Assist in the design, evaluation, and implementation of new security technologies.
General SIEM analysis, content development, and maintenance Perform SIEM, IBM Resilient, Carbon Black and Tenable day to day maintenance tasks Maintain SIEM, Resilient, Carbon Black and Tenable performance B -
Qualifications : A minimum of 3 years of demonstrated hands-on experience in designing and implementing SIEM solutions within large enterprise environments Experience in log source integration with SIEM tools including deployment of connectors and integration of infrastructure and application sources Experience supporting SIEM administrative content (i.e.
access rights, rules, dashboard, health and performance monitoring) at an Enterprise level Experience in developing PHP web based applications (nice to have) Good working knowledge of : Server platforms (UNIX, Windows etc.
networking technologies, security (Firewalls, IDS / IPS, proxy systems etc.), storage devices Good understanding of System Development Lifecycle, REGular Expression (REGEX), PERL, Python Experience with code versioning and collaborative tools C -
Network Security Technologies : Tipping Point IPS DNS Palo Alto FW Cisco ASA Sourcefire Fire Eye Cisco ISE F5 WAF Symantec Mail Gateway TrendMicro Secure Mail TrendMicro Endpoint Protection SIEM Bluecoat Proxy Cisco ACS D -
Saudi Arabia; Sudan; Somalia; Syria; Tunisia; YemenDegree : Bachelor's degree