SME -SIEM

Required Skills

Technology | Sentinel SIEM Tool Expert | Level 3 Support

Technology | Securonix SIEM Tools Expert | Level 3 Support

Technology | ArcSight SIEM Tools Administrator | Level 2 Support

Technology | Cybersecurity General Administrator | Level 2 Support

Technology | Network Traffic Analysis Administrator | Level 2 Support

Education Qualification :

Engineer - B.E / B.Tech / MCA

Certification Mandatory / Desirable :

Technology | CompTIA Security+/Certified SOC Analyst (CSA)/GIAC Security Essentials (GSEC)/Certified Ethical Hacker (CEH)/Cisco Certified CyberOps Associate/GIAC Certified Incident Handler (GCIH)/GIAC Security Operations Certified (GSOC)

Technical Expertise:

• Expert knowledge of threat detection techniques and tools
• Lead incident response efforts, including advanced containment, eradication, and recovery techniques
• Conduct in-depth digital forensics investigations
• Expertise in configuring and optimizing SIEM (Security Information and Event Management) systems

Analytical Skills:

• Deep understanding of log analysis techniques and tools
• Identify patterns and anomalies in large datasets
• Integrate threat intelligence into monitoring and response processes
• Stay updated on the latest threat intelligence and apply it to enhance security

Collaboration and Coordination:

• Work closely with IT and security teams to ensure comprehensive security coverage
• Lead coordination of response efforts during major incidents
• Ensure effective communication and collaboration among all stakeholders
• Coordinate with external partners and vendors for specialized support

Continuous Improvement:

• Continuously evaluate and improve security processes and procedures
• Implement lessons learned from incidents to enhance overall security posture
• Contribute to the development and updating of security policies and procedures