*This position is open to U.S. Citizens or Greencard holders only

*And the following locations:

Washington D.C. / New York City / Holmdel, New Jersey

Who we are:

MetTel is a recognized 4x Leader in Gartner Magic Quadrant for Managed Network Services. We are a communication solutions provider providing managed services across various mediums and systems such as cloud, network connectivity, intelligence, security, and mobility.

We are seeking a highly motivated and experienced Cybersecurity Analyst - SIEM to join our growing SOC team! In this role, you will be responsible for will be responsible for reducing the impact of security incidents and ensuring that critical business operations continue unhindered.

The Cybersecurity Analyst - SIEM will be responsible for operation of Splunk and ArcSight SIEMs, managing logging, developing searches and alerts, performing security incident response, conducting in-depth analysis of network and endpoint data, and incorporating threat intelligence to enhance detection and mitigation strategies. maintaining risk management framework, vulnerability management, and configuration compliance for our core infrastructure as part of the security & compliance team. The Cybersecurity Analyst - SIEM will manage compliance for NIST800-53 moderate and high environments and ensure development, implementation as well as assessment of relevant security controls.

Within this role you will:

• Responsible for managing Splunk Enterprise, Splunk Enterprise Security, and ArcSight.
• Configure logs for CIM compliance and data model mapping in Splunk for improved detection capabilities.
• Implement Risk-Based Alerting (RBA) security framework within Splunk.
• Develop customized correlation search and rules to detect security events relevant to core infrastructure.
• Create and test detections written in advanced Splunk Programming Language (SPL).
• Develop rules, alerts and dashboards based on business and security requirements.
• Perform analysis on hosts running on a variety of platforms and operating systems, to include Microsoft Windows & Linux, routers, switches, firewalls and virtual environments.
• Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system logs) to identify possible threats to network security.
• Leverage tools including Splunk, ArcSight, ServiceNow as part of duties performing incident response analysis.
• Correlate event or incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation.
• Monitor and analyze security events and alerts from multiple sources, including security information and event management (SIEM) software, network and host-based intrusion detection systems, firewall

The ideal candidate will meet the following criteria:

• Bachelor’s degree in computer science. (Computer Security/Information Security degree preferred), in lieu of a degree, additional experience will be considered.
• 4 years of experience working with Splunk.
• 2 years of experience working with ArcSight (Optional).
• Experience working in a SOC Environment.
• Knowledge of and experience with intrusion detection/prevention systems.
• Experience analyzing network and host-based security events.
• Knowledge of various security methodologies and processes, and technical security solutions.
• Knowledge of incident response life cycle and steps.

Additional desirable criteria:

• Knowledge of: Strong Authentication, End Point Security, Internet Policy Enforcement, Firewalls, Web Content Filtering, Database Activity Monitoring (DAM), Public Key Infrastructure (PKI), Data Loss Prevention (DLP), Identity and Access Management (IAM) solutions.

For more information about our company visit our website at:

MetTel | Business Telecom Voice, Network & Mobility Services

Keywords: Cybersecurity Analyst, Cybersecurity Analyst SIEM, #Cybersecurity, #CybersecurityAnalyst, Cybersecurity Jobs Near Me, LinkedIn, Telecommunications, #TelecommunicationJobs, Verizon, T-Mobile, Network Security, #NetworkSecurity, ATT, Cybersecurity Compliance, #CybersecurityCompliance, #Washington DC, New York, New Jersey, #CybersecurityJobsNearMe, Indeed, Google, SIEM