What are the responsibilities and job description for the Cybersecurity SIEM Engineer position at Fortuna?
15231 Avenue of Science, San Diego, CA 92128, USA
We are seeking a skilled Cybersecurity SIEM Engineer to join the County of San Diego Cybersecurity Threat & Vulnerability team. This role is critical to protecting and securing network environments through proactive monitoring, incident response, and advanced analysis.
Apply (by clicking the relevant button) after checking through all the related job information below.
WORK SCHEDULE : Pacific Time business hours
WORK LOCATION : Remote
No security clearance is required.
Must be a US Citizen or Green Card holder.
WHAT YOU'LL DO :
Provide continuous monitoring support in a 24x7x365 environment.
Share insights and intelligence derived from cybersecurity events with relevant stakeholders.
Prevent and mitigate potential cybersecurity threats and vulnerabilities.
Analyze network traffic and SIEM alerts to identify and remediate security issues.
Investigate and respond to significant cybersecurity incidents and provide expert operational assistance.
Contribute to the development and maintenance of security policies, procedures, and documentation.
Conduct detailed threat analysis and recommend remediation strategies.
Assess network events to determine potential impact and coordinate responses during incidents.
Analyze malicious activities, exploitation methods, and related cybersecurity tactics.
Work with stakeholders to address computer security incidents and ensure vulnerability compliance.
Collaborate with cross-functional teams to ensure adherence to security standards and best practices.
Perform real-time incident handling, including forensic analysis, intrusion correlation, and threat mitigation.
WHAT YOU'LL BRING :
Intermediate to advanced expertise with Wazuh SIEM and XDR solutions.
Bachelor's degree and at least 4 years of relevant experience; an additional 4 years of experience may substitute for a degree.
One of the following certifications : CND, CCNA-Security, CySA , GICSP, GSEC, Security CE, or SSCP.
Experience in Security Operations Centers, network event and / or threat analysis.
Strong understanding of cloud computing technologies (IaaS, PaaS, SaaS) and traditional computing security architecture.
Proficiency with log aggregation and security analysis tools.
In-depth knowledge of the Incident Response Lifecycle, including application across diverse environments (cloud, legacy, hybrid).
Ability to identify and recommend steps for cybersecurity remediation.
Expertise in analyzing packet traffic and common attack types, encoding, and obfuscation methods.
Excellent organizational, communication, and briefing skills.
PREFERRED :
Expertise in network architecture, design, and security.
Experience with malware analysis (static and dynamic).
Ability to detect host and network-based intrusions.
Familiarity with key system files (e.g., log, registry, configuration files) and network alerts validation.
Skill in creating signatures for network defense tools in response to emerging threats.
Comprehensive knowledge of cyber-attack stages and various classes of cyber attackers.
Keep a pulse on the job market with advanced job matching technology.
If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution.
Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right.
Surveys & Data Sets
What is the career path for a Cybersecurity SIEM Engineer?
Sign up to receive alerts about other jobs on the Cybersecurity SIEM Engineer career path by checking the boxes next to the positions that interest you.
