SIEM Engineers (Qatar) Live

Job Details

Company Details

Description

Salary

Responsibility

• Implement SIEM solutions, including design, testing, deployment, and documentation.
• Onboard data sources along with the necessary use cases, dashboards, reports, and alerts.
• Candidates with experience/certifications in Splunk (Preferred), LogRhythm, FortiSIEM, or IBM QRadar-based SIEM solutions are required.
• Hands-on implementation knowledge of any one of the SIEM solutions (LogRhythm/Splunk/FortiSIEM/IBM QRadar).
• SIEM Parser creation, Use-Case Design, Creation, and Tuning, and enhancing Security Orchestration and Operations (SOAR) functionality.
• SIEM Correlation, Analytics, UEBA, and IRP Run-Book Design, Creation, and Tuning.
• Understand user access controls, different SOC user roles, and apply role-based access control.
• Experience in all log source onboarding methods such as Syslog, agent-based, agent-less, pull or push methods, API, etc.
• Strong understanding of SIEM vendor best practices and recommendations.
• SME-level understanding of SIEM components.
• Good understanding of network requirements and constraints for inter-component as well as log source communications.

Requirements

• Minimum 8 years of experience working in IT or OT Platforms, End-user environments, preferably in MSSP (SOC) or Control System/Cyber Security domains.

Skillset:

• Design and implementation experience in any one of the SIEM solutions (LogRhythm/Splunk (Preferred)/FortiSIEM/IBM QRadar) in OT (Operational Technology) environments.
• SIEM Parser creation, Use-Case Design, Creation, and Tuning.
• SIEM Correlation, Analytics, and UEBA (User and Entity Behavior Analytics).
• Run-Book Design, Creation, and Tuning.
• Configuring and onboarding all log sources.
• Fluent in English (written and spoken).

Terms & Conditions

• Contract-based.

How to Apply?

If you are interested, please forward your detailed CV to jobs@manpowersrilanka.com

(Working hours Monday – Friday, 9.30 am – 5.30 pm)