Description
We are looking for a talented individual to join our content detection team as SIEM Content developer. The successful applicant should be expected to have security knowledge that allow him to learn how to develop SIEM detection capabilities based on Security Use Cases
This role is remote based with the occasional day here and there onsite for team meetings
Candidates must hold current SC clearance to be considered for this role
You will have to understand use cases being capable to translate them to actionable alerts, with the guidance or other senior team members, that will protect our customer base.
Curiosity, creativity, and problem-solving are essential for the role as you will be trained about how a SIEM works and how to develop detection content based on security use cases. You must be passionate about technology and able to learn the ropes of new security.
You will work with our Operations teams and group of Architects to define product release requirements, and influence key design decisions. You will work with marketing communications to define the go-to-market strategy, helping them understand the product positioning, key benefits, and target customer. You will also serve as the internal and external evangelist for your product offering, working with the sales channel and key customers to ensure market success.
Specific Accountabilities and Responsibilities
Continuously improving our security detection content by monitoring the threat landscape for new techniques which can be developed
Develop SIEM (QRadar) detection capabilities based on the raised use cases transforming them on actionable alerts that can be triaged.
Raise improvements to our current SIEM detection so those are more effective.
Understand the MITRE ATT&CK model to map the alerts to specific techniques and tactics.
Share knowledge about SIEM with other team members
Essential Requirements
5 years + experience is SIEM content and Use Case Development within a large scale SIEM environment
2 years + QRadar experience
Proven Critical thinking, creativity, and problem-solving.
Able to collect, analyse, and interpret qualitative and quantitative data from various sources including extracting indicators and exercising critical thinking in assessing the threat.
Able to manage competing priorities and work efficiently under pressure.