Responsibilities

  • To support new cluster security operations - Endpoint Advanced Threat Protection
  • The Security Engineer performs real-time analysis and trending of security log data from various security devices and systems.
  • He/She maintains data sources feeding the log monitoring system, develops and maintains detection and alerting rules
  • He/She responds to user incident reports and evaluates the type and severity of security events
  • He/She identifies recurring security issues and risks and develops mitigation plans and recommends process improvements
  • Perform audits, reviews, security control assessments, and tests of security operations based on established schedules
  • Perform real time analysis and trending of security log data from various security systems
  • Document processes related to security monitoring
  • Respond to user requests for technical assistance
  • Create emergency response procedures
  • Update users on changes in status during issue resolution
  • Manage user accounts

Requirements

  • Bachelor degree / Diploma in Information Technology or equivalent
  • At least 6 - 8 years’ experience in developing, implementing and maintaining IT systems
  • Experienced in Network/Security event monitoring on SIEM (Security Information and Event Management) platform
  • Endpoint security or endpoint protection