Software Engineer - Defense Engineering | XPand | 0.6-5 years
4d ago

Duties and Responsibilities :

Create new detection and alerting content based on emerging threats and internally created use cases

Tune existing content based on SOC analyst feedback

Scripting and automation experience KornShell, OR Bash Script OR Python OR PERL OR Powershell OR SQL Or shell scripts, OR JavaScript OR Ruby

Integration of Cyber Kill Chain methodology into SIEM content

Case Management System maintenance

Evaluate, select, deploy, support and manage the tools used by security analysts

Required qualifications :

  • 3-5 years of experience working with various security methodologies and processes; advanced knowledge of TCP / IP protocols;
  • experience configuring and optimizing various technical security solutions; extensive experience providing analysis and trending of security log data from a large number of heterogeneous security devices;
  • and expert knowledge in two or more of the following areas related to cybersecurity :

    SIEM content management

    Security automation and orchestration

    Continuous diagnostics and mitigation

    Access Control and Authorization


    Advanced Threat Protection

    Preferred Certifications : Splunk Enterprise Security Certified Admin, Certified Cloud Security Professional (CCSP), GIAC Certified Incident Handler (GCIH)

    Report this job

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form