Description
The SIEM Security Consultant is a technical consulting position supporting all phases of SIEM design and implementation. This position supports the delivery of consulting engagements. This position will not only support the delivery of consulting engagements, but may also support pre-sales activities, including request for proposal responses and pre-sales consulting. Collaboration and knowledge sharing with other SIEM Consultants will be required.Knowledge of security incident management and security operations is required.
Responsibilities will include:
- Work with sales representatives and Senior SIEM Consultants throughout the sales cycle: opportunity identification, sales meetings, product demonstrations, proof of concept installations and scoping meetings.
- Support the design of detailed solution documentation to include architecture diagrams and SIEM strategy and governance processes.
- Provide consulting services to clients including SIEM system architecture, design, implementation, system integration and troubleshooting to ensure successful solution delivery.
- Support teams involved in requirements gathering, system definition and documentation.
- Provide feedback on the effectiveness and efficiency of team delivery.
- Assess customer needs and environments to provide repeatable and leading-practice solutions.
Candidates must have the following:
- Working knowledge and understanding of routing principles and networking architecture, protocols and services.
- Ability to troubleshoot and configure network devices as well as an understanding of syslog and agent-based reporting.
- Ability to work at the system command line interface, conduct packet analysis in support of troubleshooting.
- Keen ability to diagnose and troubleshoot technical issues, excellent problem solving skills.
- Ability to develop processes and procedures around security event management.
- Ability to travel as needed by client demands.
- Valid Driver's License.
- Experience working with Managed Security Services clients
Required
- At least 3 years experience in information security technologies and processes, with at least one year experience using SIEM technologies.
- Basic knowledge in & expertise in at least one of the following: IBM QRadar Security Information&Event Manager,ArcSight, CA,Cisco,LogLogic,RSA EnVision,SymantecSIM, LogRhythm,Splunk & other similar marketplace products
- At least 1 year experience in network and endpoint infrastructure security technologies, specializing in product-based consulting, architecture and implementation
- Basic knowledge in and ability to interface and communicate with all client management and operations personnel, follow methodologies, and create and present clear, concise deliverables
- Basic knowledge in and current knowledge of security threats, solutions, security tools and network technologies
- Basic knowledge in and an understanding or proficiency in information security and compliance regulations (PCI, SOX, HIPPA, NERC)
To find out more about Computer Futures please visit www.computerfutures.com