Informacje o stanowisku

This role operates within the Security Monitoring team in a large and complex Security Information and Event Management (SIEM) environment. The primary focus is on ensuring quality and enforcing technical requirements across multiple stakeholders to maintain the stability, accuracy, and efficiency of SIEM operations, content management, and Tier 1 incident response processes. 

Qualifications & Competencies (education, skills, experience):

• Technical Understanding of SIEM: 
  Solid knowledge of SIEM architecture, log source integration, and data flow concepts.
• Analytical & Problem-Solving Skills: 
  Ability to assess technical responses and identify whether they meet operational and security requirements.
• Strong Communication & Coordination: 
  Skilled in managing multiple stakeholders, driving accountability, and ensuring timely delivery of technical tasks.
• Attention to Detail: 
  Ensure accuracy in configuration changes and documentation. 
  
  

Key Attributes :

• Proactive and persistent in driving tasks to completion.
• Comfortable working in a complex, multi-team environment.
• Able to balance technical depth with effective stakeholder management.

This role operates within the Security Monitoring team in a large and complex Security Information and Event Management (SIEM) environment. The primary focus is on ensuring quality and enforcing technical requirements across multiple stakeholders to maintain the stability, accuracy, and efficiency of SIEM operations, content management, and Tier 1 incident response processes. 

,[Drive Technical Compliance: , Ensure that all technical requests related to SIEM configuration and log source management are properly addressed and implemented on the side of the Log-Source System Owners according to defined standards. , Support Use Case configuration and tuning efforts by addressing identified process issues with stakeholders and providers. , Resolve any provider or end-user related process issues to enable Tier 1 incident response processes. , Stakeholder Coordination: , Act as the primary point of contact for multiple teams (application owners, infrastructure teams, network teams, etc.) to: , Configure new or existing log sources. , Validate changes in log source behavior (e.g., increased/decreased log volume) and confirm whether these changes are expected. , Request and validate CMDB queries that return the list of Configuration Items (CIs) associated with a log source. , Coordinate log source redirection to new targets (e.g., load balancers). , Support use case tuning efforts , Review and optimize faulty processes with providers for Incident response and content management support , Follow-Up and Escalation: , Proactively track and follow up on pending requests to ensure timely and complete responses. Escalate issues when responses are delayed or incomplete, and drive resolution through structured communication. , Technical Validation: , Review initial responses from stakeholders to determine if they are technically sound and aligned with SIEM requirements. Identify gaps and initiate further clarification or adjustments as needed. , Documentation & Reporting: , Maintain accurate records of requests, responses, and changes. Provide regular status updates and reports to management on progress and outstanding issues. Requirements: Security Additionally: Sport subscription, Training budget, Private healthcare, International projects.

Praca Warszawa

Chief security officer Warszawa

Warszawa - Oferty pracy w okolicznych lokalizacjach