Job Description

A unique and exciting role has become available in a one of a kind company.

This role is for a hands-on security engineer focused on prevention capability as well as system hardening and secure configuration.

This is across a large and diverse estate of technology assets, both on-prem and in public cloud, from servers to workstations. The security engineer will need to collaborate with infrastructure, and wider teams across Vectura to reduce the attack surface and develop new hardened systems and configuration. These should meet the needs of the business for usability as well as the appropriate level of threat prevention capability.

Senior Cyber Security Engineer \xe2\x80\x93 Duties will include:

• Design and develop SIEM tool set deployment model, architecture, and security hardening (HLD & LLD).
• Create SIEM reporting profiles, configure alerting, implement event correlation, and design dashboard configuration model, including strategic framework for Cloud, Virtual, On-prem, and legacy integration.
• Ensure compliance of SIEM architectural frameworks, including storage, with vendor design best practices.
• Design logging strategy, develop architecture for log collection, collation, ETL, ingestion, and storage (DB), and establish agent deployment model.
• Design SIEM platform technology and develop a modular capability enhancement plan for the SIEM tool set.
• Lead the technical SIEM integration and tool set build for the SOC, including development of the SIEM capability road map for expansion and integration of the SIEM solution within a modular framework.
• Deliver a security-hardened SIEM tool set that is fully integrated with agent collection and event/log forwarding across multiple platforms and back-end storage systems (DB).
• Develop reporting profiles and SOC operator management dashboards to support the SOC team and cyber security incident response processes and operating plans.
• Create the SIEM operator\xe2\x80\x99s manual, security operating procedures, tool set maintenance, and operations plan.
• Develop SIEM test plans, perform scenario modelling for red team assurance, and remediate assurance outputs, including configuration of SIEM reporting profiles in accordance with cyber security threat models

Senior Cyber Security Engineer \xe2\x80\x93 Requirements

• 5 years of experience in designing SIEM architectures and integrating multi-vendor tool sets
• Expert knowledge of vulnerability management, DLP and SOC management tooling.
• In-depth knowledge of log event collection, transformation, and ingestion within an enterprise SIEM toolset architecture
• Expertise in back-end DB storage design, agent deployment model development, and log forwarding components
• Strong understanding of vulnerability management, DLP, and SOC management tooling
• Familiarity with security assurance processes, particularly in the law enforcement or national security environment
• Preferably security cleared (SC) with appropriate professional security architecture certifications or capability to obtain security clearance
• An inquiring mind, can-do, positive attitude, and initiative-taking approach
• Good organisational and planning skills, and the ability to make decisions independently

Job Owner: m.samandi (33561)

Cortex IT Recruitment