SIEM Implementation and Management: Design, implement, and manage SIEM solutions to monitor and analyze security event logs, detect threats, and respond to incidents.
Cybersecurity Threat Detection: Develop and maintain threat detection rules, alerts, and dashboards to identify potential security threats.
Incident Response: Collaborate with incident response teams to investigate and respond to security incidents, providing technical expertise and support.
Security Monitoring: Continuously monitor security event logs, network traffic, and system activity to identify potential security threats.
Compliance: Ensure SIEM solutions meet regulatory compliance requirements and industry standards (e.g., HIPAA, PCI-DSS, GDPR).
Technical Collaboration: Work with cross-functional teams, including IT, development, and security operations, to ensure security solutions meet business needs.
Technical Skills:
Experience with SIEM solutions (e.g., Splunk, ELK Stack, IBM QRadar)
Knowledge of cybersecurity threats, vulnerabilities, and attack vectors
Familiarity with security frameworks and regulations (e.g., NIST, HIPAA, PCI-DSS)
Strong understanding of network protocols, operating systems, and cloud security
