Threat Detection/ SIEM Engineer

The role will involve working in their global security team and will be responsible of helping develop effective security controls.

Key responsibilities will include:

• Working closely with the in-house security operations team to drive world class threat detection
• Building effective detection use cases within the chosen SIEM while minimizing false positives.
• Utilize online resources for researching and collecting threat intelligence to enhance the SOC’s abilities to detect cyber-attacks.
• Utilize telemetry available throughout the environment to build and improve detection capabilities.
• Testing of existing and new detection use cases
• Participation in security incidents/ investigations

Key skills needed for the role:

• Experience of SIEM administration – Splunk or Exabeam preferred but other SIEM tools considered
• Broad technical information security knowledge including networking, malware analysis, incident response and
• Knowledge of information security protection, detection and authentication systems
• Understanding of tools, techniques and procedures that attackers use to compromise organizations, ideally from direct experience.
• Basic python\ AWS experience

Please send your CV for immediate review