SIEM Content Engineer SIEM Content Engineer …

State Street Corporation
à Quincy, MA, États-Unis
CDI, Plein-temps
Soyez parmi les premiers à postuler
Competitive
State Street Corporation
à Quincy, MA, États-Unis
CDI, Plein-temps
Soyez parmi les premiers à postuler
Competitive
State Street Corporation
SIEM Content Engineer
  • The SIEM Content Engineer for Cyber Security Center (CSC) provides information security expertise in the management and configuration of SIEM content, active lists, alerting and scheduled reports. This position will be responsible for maintaining, configuring, troubleshooting, auditing and documenting the status of SIEM content in support of the CSC. This position supports the organization's need to provide a robust, secure and reliable alerting, reporting, and various metrics.
    The SIEM Content Engineer will be responsible for maintaining and documenting the content/rules and log sources for our SIEM. This role is critical to maintaining data governance around SIEM operations.

  • Responsibilities:
  • Develop advanced SIEM correlation rules
  • Create technical documentation around the content deployed to the SIEM
  • Monitor the impact of deploying new content to the health and performance of the SIEM
  • Develop, manage, and monitor specific content necessary to implement use cases
  • Develop advanced reports to meet requirements of key stakeholders
  • Collaborate with stakeholders to develop specific use cases to address business needs
  • Respond to requests from audit and regulatory requirements
  • Participate in the SIEM Review Board and SIEM tuning meetings; make recommendations for tuning as applicable
  • Create security awareness training materials to be incorporated into training and development plans for the position
  • Review audit and error logging on a regular basis and identify any abnormalities
  • Establish best practices to comply with industry requirements
  • Work with independent contractors to perform third party assessment and testing of security measures as needed on the SIEM platform
  • Perform periodic information system activity reviews of information security processes including, where applicable, outside vendors
  • Work with third party IT vendors to implement, maintain and configure IT systems
  • Maintain working knowledge of security platforms, technology and industry trends.

Education and Experience:
  • Bachelor's degree in Information Technology, Cybersecurity, or other related field required
  • 5+ years of information security experience in several domains required
  • Information Security certification such as CompTIA Security+, GSEC, CISSP preferred

Knowledge, Skills, and Abilities:
  • Familiarity SIEMs, firewalls, IDS, and other security tools.
  • Mastery of Information Security standards and best practices
  • Mastery of Information Security tools and processes
  • Knowledge of regulatory compliance and controls
  • Knowledge of securing cloud-based solutions including Amazon Web Services (AWS), Microsoft Azure, and other cloud solution
  • Knowledge of security system design practices
  • Self-motivated, driven
  • Focus on results
  • Critical thinking and decision-making skills
  • Ability to communicate effectively in writing and in person
Descriptif de l'entreprise

From technology and product innovation to corporate responsibility and community development, we're making our mark on the financial services industry. For more than two centuries, we've been helping our clients safeguard and steward the investments of millions of people - strengthening markets, building communities and creating opportunities for growth.

We owe that longevity to the commitment, expertise and creativity of our employees. Our continued success depends on our ability to attract and develop the best talent in the industry. That's why we're keenly focused on employee development, corporate citizenship and inclusion.

For us, success comes in the mark we make as an organization - for the industry, our clients, our communities and each other.

Close
Loading...