SIEM Admin Resident Engineer

2 weeks ago

Yanbu, Al Madīnah al Munawwarah, Saudi Arabia Massadr Human Resources Services Full time

We are currently seeking a skilled and experienced SIEM Admin Resident Engineer to join our team in Yanbu, Saudi Arabia. As a SIEM Admin Resident Engineer, you will be responsible for managing and maintaining the Security Information and Event Management (SIEM) system for our organization. Your primary role will be to ensure the effective operation of the SIEM system, including monitoring, analysis, and incident response.

Responsibilities:

  1. Manage and administer the SIEM system, including installation, configuration, and maintenance.
  2. Monitor and analyze security events and incidents using the SIEM system.
  3. Identify and investigate potential security threats and vulnerabilities.
  4. Develop and implement strategies to prevent and mitigate security incidents.
  5. Collaborate with other IT teams to ensure the integration and compatibility of the SIEM system with existing infrastructure.
  6. Create and maintain documentation related to the SIEM system, including policies, procedures, and guidelines.
  7. Provide technical support and guidance to other IT staff and end-users.
  8. Stay up-to-date with the latest trends and developments in SIEM technology and security best practices.
  9. Participate in incident response activities, including investigation, containment, and remediation.

Preferred Candidate:

  1. Minimum of 3 years of experience in SIEM administration or a related role.
  2. Saudi Nationality
  3. Bachelor degree in Computer Science or Computer engineering
  4. Solid profound knowledge on HP Arcsight including but not limited to: installation/configuration, content development and fine tuning of use cases, also maintaining and reporting related hardware requirement.
  5. Engineer level at least L3Strong knowledge of SIEM systems, including installation, configuration, and maintenance.
  6. Experience in monitoring and analyzing security events and incidents.
  7. Knowledge of security best practices and industry standards.
  8. Ability to work effectively both independently and as part of a team.
  9. Excellent problem-solving and troubleshooting skills.
  10. Strong communication and interpersonal skills.
  11. Ability to prioritize and manage multiple tasks and projects.
  12. Certification in SIEM technologies (e.g. Splunk, ArcSight, QRadar) is highly desirable.
  13. Experience in incident response and handling security incidents is a plus.

Skills

  • Strong knowledge of SIEM systems
  • Experience in monitoring and analyzing security events and incidents
  • Knowledge of security best practices and industry standards
  • Excellent problem-solving and troubleshooting skills
  • Strong communication and interpersonal skills

#J-18808-Ljbffr