SOC Securonix

Analyzes and identifies areas of improvement with existing SIEM processes & procedures. Deployment or migration of SIEM solution. Performing SIEM & SOC assessment.

• Support architecture and design phase of SIEM (Azure Sentinel, Securonix, Splunk, IBM Qradar, ArcSight, etc) solutions as a component of SOC offerings.

• Responsible for configuration and deployment of SIEM solution.

• Responsible for client onboarding to SIEM.

• Experience in SIEM tool implementation, processes definition, Use Case creation.

• Hands on experience in Security Operations, SOC, SIEM, Incident Response, Automation, Cloud.

• Hands-on experience working in a product integration environment. Knowledge of REST API best practices and usage is an advantage.

• Experience with KQL or Splunk SPL query languages.

• Understanding of MITRE ATT&CK framework.

• Infrastructure knowledge base covering Networking, Compute, Virtualization, Open stack, Storage, Load balancing, etc.

• Experience with migration from one SIEM tool to other SIEM tool

• Experience with other Microsoft Security Products (Defender for Endpoint, Defender for Cloud, Defender 365, Defender for Office)