IT Information Security Engineer | Standardization and collection of events from network devices, appliances, custom components, and infrastructure. Comprehensive real-time network security monitoring The IT Information Security Engineer will be responsible for implementation of comprehensive real-time security monitoring for complex platform and collaborating with developers on logging architecture.
Responsibilities:
- Understand complex platform end to end to drive ingestion of log data needed for security monitoring.
- Collaborate with developers and infrastructure team on log configurations, formats, and delivery of a wide variety of off the shelf and custom components.
- Architect and deploy log collection infrastructure using proprietary and open source tools using standard log protocols and message queue platforms.
- Design customized JSON schema for applications.
- Deliver new or update existing log parsers, reports, and alerts.
- Creating innovative solutions involving different technologies/products.
- Develop scripts and processes to automate the collection, maintenance, enhancement and reporting of log events including leveraging REST APIs.
Key skills requirements (must-haves):
- Architecting high availability solutions
- Information Security domain experience
- Strong work prioritization, planning, and organizational skills
- Ability to collaborate effectively and work efficiently within a team while dealing with time sensitive deadlines or challenging people
- Recognize and appropriately handle confidential and sensitive information
- Strong analytical and problem solving skills with ability to clearly articulate solution alternatives
- Understanding of security information and event management (SIEM) approaches and best practices
- Experience programming in perl, python, powershell or other languages to communicate with REST APIs and manipulating JSON objects
Any skills that are nice-to-haves:
- Strong experience managing Linux or UNIX systems.
- Knowledge of querying SQL databases
- Experience leveraging Kafka for log collection.
- Development of threat detection content / alerts
|