Job Requirements
Remote
Secret Polygraph Unspecified
Career Level not specified
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
SOC Engineer - Remote
As an Engineer for Cortex, you will be responsible for assisting with the log migration anddetection strategy of our customers.
RESPONSIBILITIES:
• Work with technical lead to develop log ingestion strategy
• Contribute to detection strategy based on industry best practices
• Detail step by step process to ingest high quality log sources
• Perform log source monitoring and optimization
• Create high quality correlation rules
• Tune log sources and correlation rules
• Be an SME for SIEM, Correlation and Log Source Ingestion
• Recognize opportunities where automation can improve analyst alert handling
• Collaborate with internal and external teams to ensure product adoption
• Create technical documentation detailing SIEM aspects of the engagement
• Travel to customer meetings and workshops as needed (10%)
JOB REQUIREMENTS:
• Strong communication (written and verbal) and presentation skills, both internally and externally
• Fluent English is a requirement - Any other language is a plus
• 3+ years of deploying and integrating (SIEM) to enterprise to large enterprise-level
• Coordinating and conducting event collection, log management, event management, compliance
automation, and identity monitoring activities using (SIEM) platforms
• The ability to create and develop correlation and detection rules, within a (SIEM) to support
alerting capabilities
• Experience working with and deploying a variety of SIEM technologies (i.e Splunk, IBM QRadar)
• A proven ability to offer suggestions on detection strategy based on customer requirements
• Ability to understand logs, locating and understanding 3rd party documentation where needed
• Familiarity with reports on the status of the SIEM to include metrics on items such as number of
logging sources - log collection rate, and other performance metrics
• Knowledge of Security Analysis & Response a plus, including both endpoint, network & cloud
based environments
• 3 years experience with Security Operation Centers tooling and processes• Relevant bachelor's degree or industry recognized qualifications (CISSP, GIAC, SIEM Vendor
Qualification etc)
• Ability to read and understand technical design documentation
• Ability to create technical design documentation
BENEFITS
• Competitive base salary
• Medical, dental, vision and life insurance
• Vacation, sick time and paid holidays
• Matching 401(k) program
ENTELLIGENCE. ALWAYS READY.
Since 1997, Entelligence has provided mission critical project delivery capacity for uninterrupted growth and long-term market leadership to the industry's biggest enterprise IT brands. Our commitment to close working partnerships and a proven approach for sustainable success is why Entelligence is Always Ready to help the world's technology leaders quickly deliver their most advanced IT solutions to their most important customers.
#LI-remote
#LI-LG1
//HEREFISH
window.hfDomain = “https://api.herefish.com”;
window.hfAccountId = "461cee80-4d87-4951-9972-95772bebe59f";
(function() {
var hf = document.createElement("script"); hf.type = "text/javascript"; hf.async = true;
hf.src = window.hfDomain + "scripts/hf.js";
var s = document.getElementsByTagName("script")[0]; s.parentNode.insertBefore(hf, s);
})();
As an Engineer for Cortex, you will be responsible for assisting with the log migration anddetection strategy of our customers.
RESPONSIBILITIES:
• Work with technical lead to develop log ingestion strategy
• Contribute to detection strategy based on industry best practices
• Detail step by step process to ingest high quality log sources
• Perform log source monitoring and optimization
• Create high quality correlation rules
• Tune log sources and correlation rules
• Be an SME for SIEM, Correlation and Log Source Ingestion
• Recognize opportunities where automation can improve analyst alert handling
• Collaborate with internal and external teams to ensure product adoption
• Create technical documentation detailing SIEM aspects of the engagement
• Travel to customer meetings and workshops as needed (10%)
JOB REQUIREMENTS:
• Strong communication (written and verbal) and presentation skills, both internally and externally
• Fluent English is a requirement - Any other language is a plus
• 3+ years of deploying and integrating (SIEM) to enterprise to large enterprise-level
• Coordinating and conducting event collection, log management, event management, compliance
automation, and identity monitoring activities using (SIEM) platforms
• The ability to create and develop correlation and detection rules, within a (SIEM) to support
alerting capabilities
• Experience working with and deploying a variety of SIEM technologies (i.e Splunk, IBM QRadar)
• A proven ability to offer suggestions on detection strategy based on customer requirements
• Ability to understand logs, locating and understanding 3rd party documentation where needed
• Familiarity with reports on the status of the SIEM to include metrics on items such as number of
logging sources - log collection rate, and other performance metrics
• Knowledge of Security Analysis & Response a plus, including both endpoint, network & cloud
based environments
• 3 years experience with Security Operation Centers tooling and processes• Relevant bachelor's degree or industry recognized qualifications (CISSP, GIAC, SIEM Vendor
Qualification etc)
• Ability to read and understand technical design documentation
• Ability to create technical design documentation
BENEFITS
• Competitive base salary
• Medical, dental, vision and life insurance
• Vacation, sick time and paid holidays
• Matching 401(k) program
ENTELLIGENCE. ALWAYS READY.
Since 1997, Entelligence has provided mission critical project delivery capacity for uninterrupted growth and long-term market leadership to the industry's biggest enterprise IT brands. Our commitment to close working partnerships and a proven approach for sustainable success is why Entelligence is Always Ready to help the world's technology leaders quickly deliver their most advanced IT solutions to their most important customers.
#LI-remote
#LI-LG1
//HEREFISH
window.hfDomain = “https://api.herefish.com”;
window.hfAccountId = "461cee80-4d87-4951-9972-95772bebe59f";
(function() {
var hf = document.createElement("script"); hf.type = "text/javascript"; hf.async = true;
hf.src = window.hfDomain + "scripts/hf.js";
var s = document.getElementsByTagName("script")[0]; s.parentNode.insertBefore(hf, s);
})();
group id: ENTEL