SIEM Engineer

DarkMatter
Abu Dhabi, UAE

نشرت

  • المرتب

    غير محدد
    غير محدد غير محدد

  • نوع الوظيفة

    دوام كامل

تفاصيل الوظيفة

    At DarkMatter, we are building an organization of specialists to provide the ultimate integrated cyber security protection available. Whatever the scope, scale or sensitivity of our clients' work, we will assess their risks, resolve their vulnerabilities and always keep them ahead of the threat, offering them the best possible products and solutions.
    As a SIEM Engineer, you will:
    The SIEM Engineer is a L2 support personnel for the entire SIEM platform. Be responsible for all Splunk platform stability related activities to include on-boarding logs. Provide hand over to the content developer once the logs are on-boarded and are parsing properly. SIEM Engineers responsibilities include:
    - Configure and administer the SIEM to support the needs of SOC.
    - Provide first level technical support for SIEM tool.
    - Responsible for maintaining the health of the SIEM tool and ensuring 99.96% uptime of the platform.
    - Perform regular patching and version upgrades on the SIEM platform.
    - Create necessary dashboards in SIEM to enable the SOC security monitoring.
    - Perform SIEM software patching activities.
    - Configure forwarders and develop TAs (if needed) to integrate various log sources with SIEM platform for log monitoring.
    - Coordinate or perform the scheduled backups and restore activities as per the backup policy.
    - Maintain the log baselines as per the requirements given in the log management policies and compliance requirements.
    - Manage faults; coordinate with principal vendor for resolution.
    - Ensure Health and Maintenance of DR platform.
    - Ensure real time data and Configuration replication between Primary and DR sites.
    - In case of Primary site failure, ensure platform availability in DR site within defined SLAs.
    - Ensure health and availability of all Heavy Forwarders deployed at client site.
    - Maintain separate asset inventories for all log sources being on-boarded for all individual clients.
    - Maintain proper documentation for the entire SIEM platform.
اقرأ المزيد اقرأ أقل
أخر الوظائف

Download Jobzella Mobile App

Jobzella mobile app for Android and iPhone