What are the responsibilities and job description for the SIEM Engineer - SOAR SME position at Gray Tier Technologies?
Gray Tier Technologies is seeking a SIEM Engineer to join our growing team in support of a Security Operations Center on a newly awarded contract. The ideal candidate will have experience working in a network security environment, such as a Security Operations Center (SOC), Computer Emergency Response Team (CERT), Computer Incident Response Team (CIRT), Computer Incident Response Center (CIRC) or Cyber Security Incident Response Center (CSIRC).
Responsibilities:
Provide SIEM engineering efforts and provide direct support to SOC operations
- Serve as the lead for all Security Orchestration, Automation, Response (SOAR) activities within the SOC - SOAR activities include:
- Demonstrate SOAR capabilities via SIEM and ticketing system.
- Demonstrate SOAR capabilities via SIEM and remediation activities.
- Demonstrate areas where the application of SOAR will provide immediate return on investment.
- Implement solutions to enable or improve SOAR capabilities.
- Ensure availability of the SIEM and provide administrative oversight of the tool
- Responsible for the implementation, operations, maintenance and lifecycle management of the SIEM tool
- Revise and develop processes to strengthen the current operational activities; review policies and recommend changes to improve tool usage and governance
- Coordinate with stakeholders to build and maintain positive working relationships
- Excellent analytical and communicative skills along with collaborative, teaming and interpersonal skills
Minimum Requirements
- Minimum seven (7) years IT experience with at least two (2) years of experience in the role of SIEM/SOAR Content Development
- Splunk experience.
- BS Degree or additional work experience substitution
Secret Clearance Required
