Description
The SIEM Security Consultant is a technical consulting position supporting all phases of SIEM design and implementation. This position supports the delivery of consulting engagements. This position will not only support the delivery of consulting engagements, but may also support pre-sales activities, including request for proposal responses and pre-sales consulting. Collaboration and knowledge sharing with other SIEM Consultants will be required.Knowledge of security incident management and security operations is required.
Responsibilities will include:
- Work with sales representatives and Senior SIEM Consultants throughout the sales cycle: opportunity identification, sales meetings, product demonstrations, proof of concept installations and scoping meetings.
- Support the design of detailed solution documentation to include architecture diagrams and SIEM strategy and governance processes.
- Provide consulting services to clients including SIEM system architecture, design, implementation, system integration and troubleshooting to ensure successful solution delivery.
- Support teams involved in requirements gathering, system definition and documentation.
- Candidates must have the following:
- Working knowledge and understanding of routing principles and networking architecture, protocols and services.
- Ability to troubleshoot and configure network devices as well as an understanding of syslog and agent-based reporting.
- Ability to work at the system command line interface, conduct packet analysis in support of troubleshooting.
Required
- At least 3 years experience in information security technologies and processes, with at least one year experience using SIEM technologies.
- Basic knowledge in & expertise in at least one of the following: IBM QRadar Security Information&Event Manager,ArcSight, CA,Cisco,LogLogic,RSA EnVision,SymantecSIM, LogRhythm,Splunk & other similar marketplace products
- Experience in network and endpoint infrastructure security technologies, specializing in product-based consulting, architecture and implementation
- Basic knowledge in and ability to interface and communicate with all client management and operations personnel, follow methodologies, and create and present clear, concise deliverables
- Knowledge in and current knowledge of security threats, solutions, security tools and network technologies
- Knowledge in and an understanding or proficiency in information security and compliance regulations (PCI, SOX, HIPPA, NERC)
- Knowledge in and understanding of Information Security regulations, frameworks and leading practices (such as ISO, COBIT, SANS, NIST)
- Knowledge in and experience with security event analysis and incident response