Posted on Oct 14, 2020 by Source Technology
Hiring a Security Cloud Engineer for a 3-6 months contract.
5+ years of hands-on experience as a Security Incident Responder and/or Threat Hunter. Possibly familiar with Tanium and/or Defender ATP.
3+ years of hands-on experience in implementing SIEM detection rules. Possibly familiar with QRadar and/or Sentinel.
3+ years of hands-on experience in the area of Scripting and automation. Possibly familiar with Demisto
2+ years of hands-on experience with the Microsoft Cloud Security tools; Azure Sentinel, Defender ATP, Azure ATP, Cloud App Security, Office ATP, Azure Security Center, etc.
Conceptualize, test, and develop threat detection use cases. In particular you will develop SIEM detection rules, capable of correlating data logs of various nature (ie host, network traffic, mail data, etc.), as well as the IRP playbooks that will guide the SOC and SIRT analysts through the Incident Response process phases.
Design, test, and develop integrations and automation logic among the tools in our technology stack (ie cloud security products, SIEM, IRP, TIP) to support the investigation activities of SOC and SIRT
Email for more info!
Set up alerts to get notified of new vacancies.