SIEM Admin

Abu Dhabi, United Arab Emirates
| Posted on 01/26/2024
Job Description: CyberGate Defense, a leading cybersecurity company, is seeking a SIEM Admin Engineer with 4 -6 years of experience to join our team. The successful candidate will be responsible for the administration of SIEM Tools and developing custom parsers.
· Deep knowledge of QRadar/ Arcsight, other SIEM technology expertise also helpful.
· Security operations experiences such as incident management, intrusion detection, firewall deployment, and security event analysis
· Experience with security devices and general IT installations, configuration, and troubleshooting (e.g. Firewall, IDS, etc.)
· Development of custom parsers,Use Cases and fine-tuning the UseCase based on the inputs from the SOC team
· Handle day-to-day activities required to achieve and maintain SIEM Operational
· Perform upgrades on the QRadar/ Arcsight SIEM components
· Deploy new Console, Event Processor, Data Node & Collector as required to collect data feeds
· Investigate and debug alerts generated in console.
· Review configurations for potential security weaknesses.
· Develop Content including rules, reports, and dashboards
· Perform QA (Quality Assurance) function on content developed by other parties
· Health checks that need to be performed on the SIEM.
Excellent communication and customer interaction skills#J-18808-Ljbffr

---