SIEM Implementation - Alien Vault

Job Summary

Requirement / Qualification: ¿ Resource with minimum 4 5 years of managing SIEM. ¿ Security events Monitoring and SIEM administration/Implementation support. ¿ Proven experience on handling security incident investigation / forensics ¿ Knowledge of security and compliance regulatory standards. ¿ Create dashboards on Alien Vault Console to visualize data and events which help identify trends, anomalies and monitor the general health or security status of the environment. ¿ Monitor multiple security alerts sources, eliminate false positive and based on impact and nature of security incident escalate according to established procedures. ¿ Knowledge of Alien Vault SIEM, its components, and associates ¿ Proactively monitoring vulnerabilities related to network security and upgraded the SIEM rules accordingly. ¿ Threat Research & Analysis during high severity Cyber Attacks impacting clients globally. ¿ Experience in handling Incident response, triaging and analyzing the incidents. ¿ Security threat identification (including malware), research, analysis and advisory capabilities. ¿ Some knowledge of hacking stages and techniques ¿ Excellent troubleshooting skills, with a creative approach to problem solving. ¿ Team player and collaborator with excellent follow up and documentation skills. ¿ Must be able to work and develop a positive relationship with customers of various sizes and complexity. ¿ Self driven engaging individual with a proven history of demonstrated technical skills. ¿ Ability to determine root cause of technical issues either on own or in a collaborative scenario.