Broadaxis
Google Chronicle SIEM & SOAR Architect/Engineer
Broadaxis, Issaquah, Washington, United States, 98027
Issaquah, United States | Posted on 11/19/2024Job Title:Google Chronicle SIEM & SOAR Architect/EngineerWork Location:ISSAQUAH, WA (US: 98027) / Client LocationDuration:6-12 monthsJob Description
We are seeking an experienced and highly skilled Google Chronicle SIEM & SOAR Architect/Engineer to design, implement, and support our organization's Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) solutions. The ideal candidate will lead efforts in integrating advanced security tools, automating security operations, and enhancing threat detection and response capabilities.
This role is ideal for professionals with hands-on experience in Google Chronicle SIEM, SOAR technologies, and security architecture who thrive in dynamic environments.
Key Responsibilities
Lead the architecture and design of Google Chronicle SIEM & SOAR solutions to address the organization's security requirements.
Collaborate with key stakeholders to define requirements and ensure solutions align with business and security objectives.
Design seamless integration strategies with existing security tools, applications, and data sources.
Implementation:
Oversee the deployment and configuration of Google Chronicle SIEM and SOAR environments.
Develop and implement data ingestion pipelines for efficient security event collection and correlation.
Create and configure use cases, detection rules, and response playbooks tailored to the organization's security needs.
Support & Maintenance:
Provide ongoing support, including troubleshooting, tuning, and optimization of SIEM & SOAR environments.
Monitor and maintain system health and performance, ensuring high availability and reliability .
Work with security teams to continually improve threat detection and response capabilities.
Automation & Integration:
Develop automation scripts and workflows to streamline security operations and incident response processes.
Integrate Google Chronicle with other security tools such as EDR, firewalls, and threat intelligence platforms to enhance detection and response strategies.
Create custom parsers for log integration within Google Chronicle.
Training & Documentation:
Develop and maintain comprehensive architecture, configuration, and process documentation .
Provide training and knowledge transfer to internal teams on the use and administration of the Google Chronicle SIEM and SOAR platforms.
Qualifications
Experience:
Minimum 5+ years in security architecture, engineering, or operations.
Extensive hands-on experience with Google Chronicle SIEM and SOAR platforms .
Proven track record in designing and implementing large-scale SIEM and SOAR solutions .
Proficiency in scripting languages (e.g., Python) for automation purposes.
Technical Skills:
Deep understanding of security concepts , threat intelligence , incident response , and security operations.
Proficiency in working with security technologies and frameworks, including SIEM, SOAR, EDR, IDS/IPS, and firewalls.
Familiarity with cloud environments (e.g., GCP, AWS, Azure) and cloud security best practices.
Expertise in data normalization , correlation , and threat detection techniques .
Soft Skills:
Strong problem-solving abilities and the capability to work independently and collaboratively.
Excellent verbal and written communication skills , with the ability to explain technical details to non-technical stakeholders.
Ability to adapt to fast-paced environments and manage multiple priorities effectively.
Certifications (Preferred):
Google Cloud Professional Security Engineer
GIAC Security Expert (GSE)
Certified Information Systems Security Professional (CISSP)
Equivalent certifications in the security domain.
#J-18808-Ljbffr
We are seeking an experienced and highly skilled Google Chronicle SIEM & SOAR Architect/Engineer to design, implement, and support our organization's Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) solutions. The ideal candidate will lead efforts in integrating advanced security tools, automating security operations, and enhancing threat detection and response capabilities.
This role is ideal for professionals with hands-on experience in Google Chronicle SIEM, SOAR technologies, and security architecture who thrive in dynamic environments.
Key Responsibilities
Lead the architecture and design of Google Chronicle SIEM & SOAR solutions to address the organization's security requirements.
Collaborate with key stakeholders to define requirements and ensure solutions align with business and security objectives.
Design seamless integration strategies with existing security tools, applications, and data sources.
Implementation:
Oversee the deployment and configuration of Google Chronicle SIEM and SOAR environments.
Develop and implement data ingestion pipelines for efficient security event collection and correlation.
Create and configure use cases, detection rules, and response playbooks tailored to the organization's security needs.
Support & Maintenance:
Provide ongoing support, including troubleshooting, tuning, and optimization of SIEM & SOAR environments.
Monitor and maintain system health and performance, ensuring high availability and reliability .
Work with security teams to continually improve threat detection and response capabilities.
Automation & Integration:
Develop automation scripts and workflows to streamline security operations and incident response processes.
Integrate Google Chronicle with other security tools such as EDR, firewalls, and threat intelligence platforms to enhance detection and response strategies.
Create custom parsers for log integration within Google Chronicle.
Training & Documentation:
Develop and maintain comprehensive architecture, configuration, and process documentation .
Provide training and knowledge transfer to internal teams on the use and administration of the Google Chronicle SIEM and SOAR platforms.
Qualifications
Experience:
Minimum 5+ years in security architecture, engineering, or operations.
Extensive hands-on experience with Google Chronicle SIEM and SOAR platforms .
Proven track record in designing and implementing large-scale SIEM and SOAR solutions .
Proficiency in scripting languages (e.g., Python) for automation purposes.
Technical Skills:
Deep understanding of security concepts , threat intelligence , incident response , and security operations.
Proficiency in working with security technologies and frameworks, including SIEM, SOAR, EDR, IDS/IPS, and firewalls.
Familiarity with cloud environments (e.g., GCP, AWS, Azure) and cloud security best practices.
Expertise in data normalization , correlation , and threat detection techniques .
Soft Skills:
Strong problem-solving abilities and the capability to work independently and collaboratively.
Excellent verbal and written communication skills , with the ability to explain technical details to non-technical stakeholders.
Ability to adapt to fast-paced environments and manage multiple priorities effectively.
Certifications (Preferred):
Google Cloud Professional Security Engineer
GIAC Security Expert (GSE)
Certified Information Systems Security Professional (CISSP)
Equivalent certifications in the security domain.
#J-18808-Ljbffr