Cyber Security Engineer - SIEM - SOAR - AZURE - AWS

Cyber Security Engineer - SIEM - SOAR - AZURE - AWS

PURPOSE OF ROLE:

You will be working in the Security Team, reporting direct to the Team Leader who reports into the Head of Operations.

The role will be focused on the day-to-day monitoring of our SIEM platform deployed for our growing client base. As well as assisting clients enhance their security solutions.

Our client is in the process of implementing a new SIEM and SOAR platform and looking to build out a SOC function. The Cyber Security Engineer will play a key part in the design and deployment of these solutions.

KEY RESPONSIBILITIES:

• On boarding clients to SIEM platform
• Acknowledge, analyse and validate incidents triggered from correlated events through SIEM solution
• Perform false positive and false negative analysis
• Technical lead for threat, event and incident management
• Producing incident reports
• Providing technical advice and support on pre-sales opportunities
• Providing technical support & guidance to other members of the team
• Liaising with manufactures regarding product specific issues
• Representing Nouveau Solutions as a technical authority on operational client calls
• Supporting Team Leader on any requests in area of expertise
• Prepare, maintain, and adhere to procedures for logging, reporting, and statistically monitoring data as directed.
• Ensuring time is accurately logged against client work, for billing purposes
• Handling technical incident tickets within contractual SLA
• Security escalation point for the Service Desk Team
• Working with Service Delivery Team Lead to ensure all Pre-Sales and Project work is scheduled effectively
• Identify new technologies opportunities to enhance the product and service portfolio
• Respond to emergency outages in accordance with business continuity and disaster recovery plans.
• Adopt a proactive approach towards all client activities.
• Collaborate with all the Technical Service departments when required to ensure business objectives are met.
• Support delivery of projects with chosen technologies
• Assist Team Leader with team planning, for example resource levels required at any given time to deliver projects etc
• Own personal training plan and work with Team Leader to put in place
• Highlight areas for improvement to Team Leader where applicable
• On occasion may be required to stand in for Team leader
• Expectation to assist with other tasks requested by Team Leader or Head of Operations

Desired Skills/Qualifications/Experience

• Knowledge of Endpoint Detection and Response solutions such as Sentinel One and Bitdefender
• Experience with IAM platforms such as Azure AD or Okta
• Experience with Azure or AWS
• Experience working in a Security or Network support team
• Experience with SIEM/SOAR solutions
• Knowledge of network environments (routing/switching/VLANS/Security/Wireless/etc.)
• Knowledge of Windows Server infrastructure, Active Directory
• Knowledge of ITIL disciplines such as Incident, Problem and Change Management
• ITIL - Foundation
• Fortinet Solutions - NSE Certifications
• Excellent all-round troubleshooting skills
• Drive to work off own initiative
• Ability to work in a fast paced, changing environment
• Understanding of ticket management systems and SLAs