SIEM_SOAR_MDR Engineering Lead

Job Description

Required Technical and Professional Expertise 9 years hands-on experience on SOC operations -(Standard Operations Procedures, Runbook and Playbooks). Designing, maintaining and troubleshooting the SIEM/XSOAR environment-Microsoft Sentinel. Implement changes of SIEM/XSOR infrastructure Create, maintain and consult security monitoring measures Building SIEM infrastructure for new customers Building SIEM infrastructure for new customers during onboarding projects Candidates should possess proven record in advising on Security Operations & Response at the Chief Information Security Officer (CISO) and/or Senior Security Manager levels and be recognized for business as well as technical acumen. Experience on programming languages: Python and/or R. and/or Rust Experience with Data monitoring / Data Science As a technical lead/architect, successfully transforming traditional SOC environment to a Modern SOC architecture including cloud integrations. Deep knowledge in the most common and used frameworks (E.g., NIST CSF, ISO2700x, CMM SOC, etc.) The candidate must have exceptional communication and presentation skills as well as must be a self-starter and always exhibit professional business conduct. Stakeholder management and interpersonal skills at both a technical and non-technical level. Must be willing to travel up to 50%, depending on client requirements. Preferred Technical and Professional Experience Microsoft Sentinel. Thorough knowledge of SOAR (Security Orchestration Automation & Response) technologies. Thorough knowledge on defining data sources monitoring based on clients business Thorough knowledge on MITRE Frameworks (ATT&CK, D3FEND) Familiar with Cyber Kill Chain Thorough knowledge on how to operationalize ongoing security configuration governance service using SOC standard methodologies, metrics, KPIs, KRIs, Operational Procedures.