Security Infrastructure Engineer (Google SecOps)

Academic & Professional Qualifications:

• Bachelor’s degree in computer science, IT, Cybersecurity, or equivalent.
• SIEM Certification ( Google SecOps, Splunk, Azure Sentinel).

Preferred:

• Security certifications such as Security+, CySA+, CEH, CISSP, GCIH
• Google SecOps Engineer

Experience:

• 3–5 years of hands-on experience in Security Engineering, SOC Automation, DevOps Engineer, Security Operations, or Infrastructure Security.

Skills and Requirements:

Technical Skills (Must Have)

• SIEM/SOAR Mastery: Proven experience architecting and managing enterprise-grade platforms (e.g., Splunk, Azure Sentinel, or QRadar), with at least 1–2 years specifically focused on Google SecOps (Chronicle).

Key Requirement: Required skills: Google SecOps.

• Coding & Scripting: Professional experience using Python to automate security workflows or build custom API connectors.
• Cloud Infrastructure: Hands-on experience managing security within Google Cloud Platform (GCP), including VPC service controls, IAM, and Cloud Logging.
• Languages: Python (Advanced), SQL (BigQuery), YARA/YARA-L, and Bash.
• Frameworks: MITRE ATT&CK, NIST Cybersecurity Framework.
• Tools: Git (Version Control), Terraform (Infrastructure as Code), Docker/Kubernetes (Containerization).
• Data Standards: Deep knowledge of JSON, Protobuf, and Regex for log parsing and normalization.

Security Infrastructure Engineer

Functional Responsibilities:

Data Ingestion and Normalization

• Pipeline Management: Architect and maintain the ingestion of telemetry from multi-cloud (GCP, AWS, Azure) and on-premises environments using Bind Plane Forwarders, Cloud-to-Cloud (C2C) connectors, and Webhooks.
• Parser Development: Design, build, and troubleshoot custom parsers (CBN) to ensure non-standard log sources are correctly normalized into the Unified Data Model (UDM).
• Data Health Monitoring: Build dashboards to monitor ingestion rates, latency, and data drops to ensure the SIEM is always receiving high-quality, actionable data.

Job Type: Full-time

Pay: QAR21,000.00 - QAR25,000.00 per month

Work Location: In person