SIEM Senior Consultant

Candidate should be able to :

Drive multiple simultaneous workstreams; manage schedules, risks, and issues with effective communication to the team, to senior management, and company executives.

Research and keep up to date on threat actors and new TTP.

Write incident reports and deliver presentations to key business partners as well as help define roadmaps.

Assist, manage, and mentor other cybersecurity team members on the team.

Convert complex scenarios into business requirements and then drive technical project specifications.

Apply data-driven insights to create business justifications and value propositions for proposed engineering investments.

Candidate should have :

Experience working with various technical departments to enhance threat detections of deployed SIEMs

Hands-on content(use case) development experience using 1 or more SIEM query languages (Splunk SPL, Kusto Query)

Experience managing teams of several cybersecurity analysts and / or consultants

Demonstrated ability to create and present executive level briefings

Proficiency in operating systems, database platforms, web technologies, firewalls, and programming languages

Strong verbal & written communication skills

Excellent root cause analysis skills

Experience with cloud environments(e.g., Azure, AWS, Google Cloud Platform, etc.) and, cloud security architecture

Understanding of the MITRE ATT&CK framework

Knowledge of information security standards (ISO, NIST, PCI, PIPEDA, GDPR, etc.)

Deep experience architecting, managing deployment, and operationalization of SIEM in client environments

Solid technical knowledge of Linux and Windows

5+ years hands-on experience with 1 or more of the following SIEM tools : Splunk Enterprise Security, ELK, Azure Sentinel

Strong critical thinking and group facilitation skills

Scripting experience with one or more of the following languages : Powershell, Bash, Shell, Python