SIEM Engineer
We are seeking an experienced SIEM Engineer to lead the migration of our current SIEM platform (QRadar) to an open-source solution. The ideal candidate will have hands-on experience with SIEM systems, particularly QRadar, and a strong background in security operations. As part of the team, you will be responsible for evaluating and deploying a new SIEM solution, ensuring a smooth transition while maintaining robust security monitoring.
Responsibilities:
- Lead the migration from QRadar to a new open-source SIEM platform.
- End-to-end deployment of SIEM solutions in a greenfield environment.
- Configure and standardize new log sources into the SIEM solution.
- Debug and troubleshoot security operation center (SOC) systems, applications, and network issues.
- Collaborate with teams to assess various platforms and IT systems for seamless integration.
- Document processes, procedures, and best practices related to SIEM deployment and management.
Requirements:
- 3-7 years of experience in deploying and managing SIEM solutions, preferably with QRadar.
- Proven experience in configuring log sources and connecting them to SIEM systems.
- Strong troubleshooting skills for SOC systems, network, and application issues.
- Ability to document technical processes clearly and effectively.
- Fluent in English (both written and spoken).
- This role requires someone who can work independently and adapt to evolving security needs, ensuring our systems stay secure during and after the SIEM migration.