2-4 years experience with the administration of SIEM tools, specifically IBM QRadar.

- Coding/scripting experience to manipulate and reformat logs.

- Experience working with IT log sources and log analysis from different types of tools (Identity Management, endpoints, servers, network devices, applications).

- Experience working with OT log sources like Aircrafts, Mobile Devices, Storage Lockers, Elevators, AC Units, etc.

- Excellent communication and presentation skills.

- Ability to coordinate actions and follow up to make things happen.

- Excellent English level (Native).

Desired skills:

- Experience working in a SOC or an incident response position with log analysis focus.

- AWS cloud knowledge.

Activities to Perform:

Troubleshoot and resolve any issue that arises related to the SIEM, especially to ensure all the appropriate endpoints, applications or systems that are reporting into the SIEM.

- Develop scripts to manipulate OT logs so they can be fed into the SIEM.

- Updating content, working with the SOC team to validate rules, monitor the SIEM health.

- Build Log Source KB Articles.

Job Type: Full-time

Schedule:

• 8 hour shift

Experience:

• Linux: 1 year (Preferred)
• Cybersecurity: 1 year (Preferred)
• Information security: 1 year (Preferred)

Work Location: Remote