SIEM Engineer - Qatar

Job Title: SIEM Engineer

Work Location: Qatar

Driving License: candidate with Qatar driving license will have an added advantage

Education: Bachelors or higher Engineering degree

Experience: Minimum 8 years of experience working in IT or OT Platform, End user environment preferably MSSP (SOC) or Control System / Cyber Security Domain.

Skillset:

Design and implementation experience in any one of the SIEM solution (LogRhythm / Splunk (Preferred) / FortiSIEM / IBM QRadar) in OT (Operational Technology) environment

SIEM Parser creation, Use-Case Design, Creation and Tuning

SIEM Correlation, Analytics and UEBA

Run-Books Design, Creation and Tuning

Configuring and onboarding all log sources

Job Description:

Implementation of SIEM solutions including design, testing, deployment, and documentation

Onboarding of data sources along with necessary use cases, dashboards, reports, and alerts

Candidates with experience/certifications in Splunk (Preferred)/Logrhythm/Fortisiem or IBM... Qradar based SIEM solutions

Hands on implementation knowledge in any one of the SIEM solution (LogRhythm/Splunk/ Fortisiem / IBM Qradar)

SIEM Parser creation, Use-Case Design, Creation and Tuning and enhancing the Security Orchestration and Operations (SOAR) functionality

SIEM Correlation, Analytics, UEBA, IRP Run-Books Design, Creation and Tuning

Understand user access controls, different SOC user roles, applying roles-based access control

Good experience in all log source onboarding methods for example Syslog, agent base, agent less, pull or push methods, API etc.

Should have better understanding of SIEM vendor best practices and recommendations

Should have SME level of understanding on SIEM components

Good understand of network requirements and constraints for inter component as well as for log source communications

Experience in data parsing, Parser development, normalizing, and segregation

Should have experience in SIEM standalone component deployment, single site, and multi-site cluster deployment

Have experience in documenting the design, implementation, transition, and use case specification documentations

Have experience in creating knowledge objects, correlations searches, dashboards, and reports.

Understanding of resource requirement for SIEM components according to log volume and use case requirement

Apply Job!