SIEM Admin - Qradar/ Arcsight

Job Title: SIEM Admin Engineer

Job Description: CyberGate Defense, a leading cybersecurity company, is seeking a SIEM Admin Engineer with 4-6 years of experience to join our team. The successful candidate will be responsible for the administration of SIEM Tools and developing custom parsers.

Responsibilities

• Deep knowledge of QRadar/ Arcsight, other SIEM technology expertise also helpful.
• Security operations experiences such as incident management, intrusion detection, firewall deployment, and security event analysis.
• Experience with security devices and general IT installations, configuration, and troubleshooting (e.g. Firewall, IDS, etc.).
• Development of custom parsers, Use Cases and fine-tuning the UseCase based on the inputs from the SOC team.
• Handle day-to-day activities required to achieve and maintain SIEM Operational.
• Perform upgrades on the QRadar/ Arcsight SIEM components.
• Deploy new Console, Event Processor, Data Node & Collector as required to collect data feeds.
• Investigate and debug alerts generated in console.
• Review configurations for potential security weaknesses.
• Develop Content including rules, reports, and dashboards.
• Perform QA (Quality Assurance) function on content developed by other parties.
• Health checks that need to be performed on the SIEM.
• Excellent communication and customer interaction skills.

Benefits

• Tax-free Salary
• Family Medical Insurance