L2 LogRhythm SIEM Administrator

Job Description

Platform Monitoring Maintenance: Monitor and maintain the LogRhythm platform, addressing any issues that arise in a timely manner. Log Source Integration: Assist in integrating various log sources (up to 25 different types) and manage configurations for optimal performance. Troubleshooting: Investigate and resolve platform issues, escalating to L3 administrators when necessary. Compliance Support: Ensure that the platform complies with PCI-DSS, ISO27001, and BCP standards. Content Optimization: Support the development and fine-tuning of SIEM use cases, alerts, and reports as required. Collaboration: Work closely with the L3 administrator and organizationteams to ensure seamless system performance. Platform Maintenance: Assist with scheduled platform upgrades and other administrative tasks. Documentation: Maintain clear and concise documentation of system issues, configurations, and resolutions. Requirements Skills and Qualifications: Experience: 3-5 years of experience in SIEM administration, with hands-on knowledge of LogRhythm. Technical Skills: Understanding of log source integration, platform troubleshooting, and basic parser development. Certifications: LogRhythm certified (preferred), PCI-DSS, ISO27001 (optional but desirable). Communication: Good communication skills to interact with teams and provide technical support. Availability: Must be available during business hours and willing to extend work hours as per business needs.