SIEM Specialist

Requirements:

• Degree in Computer Science, IT Security, or equivalent work experience in Information Security

• Minimum 2-5 years of experience in SIEM administration

• Excellent knowledge of Splunk and Splunk ES solution

• Good knowledge of IBM Qradar solution

• Good knowledge on network principles

• Intermediate English (at least CEFR B1, written/spoken)

• Availability to travel occasionally in Europe.

• Splunk certifications are a plus (Splunk Core Certified Advanced Power User, Splunk Cloud Certified Admin, Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect)

• Good understanding of IT infrastructure (network, systems).

Skills:

• Communication and interpersonal relations skills in an international environment.

• Knowledge of one or more scripting languages (eg: PowerShell)

• Ability to implement process and technologies that make efficient use of SIEM and collected data for the purposes of security detection.

• Capable of defining security use cases and correlation rules to enable SIEM detection of new cyber treats

• Good interpersonal communication and team work oriented

• Attention to details with flexibility in addressing changing requirements

• Knowledge of security concepts such as cyber-attacks and techniques, threat vectors

• Microsoft Office suite usage (Word, PowerPoint, Excel).