Cyber Security (SIEM )Consultant
Next-Link
Zürich, ZH, ch
- Develop and maintain a deep understanding of the latest threat landscape, including tactics, techniques, and procedures (TTPs) used by attackers.
- Develop and maintain expertise in threat detection tools and technologies, including SIEM systems, EDR tools, and network monitoring solutions.
- Collaborate with the Purple Team to enhance security measures and implement insights into detection rules.
- Continuously evaluate and improve the effectiveness of existing threat detection and response measures.
- Onboard and normalize log data in the Elastic Stack, ensuring accurate and efficient data parsing.
- Develop detection rules for cybersecurity attacks in complex corporate environments.
- Communicate effectively with a broad spectrum of stakeholders, including cybersecurity analysts and threat intelligence experts.
- Participate in penetration tests and red team exercises as an ethical hacker, contributing to the overall security strategy.
- Maintain high integrity, a result-oriented approach, and composure under pressure.
- Demonstrate strong communication, influencing, and collaboration skills.
- Develop detection rules covering tools such as SIEM and EDRs, and industry frameworks like MITRE ATT&CK.
Requirements
- Proven experience as a SIEM engineer, with expertise in log onboarding, parsing, and normalizing data in the Elastic Stack.
- Strong passion for cybersecurity operations and a belief in its value as a business enabler.
- Experience in developing detection rules for cybersecurity attacks in complex corporate environments.
- Ability to communicate effectively with various stakeholders, from analysts to threat intelligence experts.
- Successful track record in penetration tests and red team exercises as an ethical hacker.
- High level of integrity, result-oriented approach, and composure under pressure.
- Excellent communication, influencing, and collaboration skills.
- Knowledge of detection rule development, including tools (SIEM, EDRs) and industry frameworks (MITRE ATT&CK).
Vor 6 Tagen