hireejobsgulf
Register for Job

CSOC Architect & Consultant

15.00 to 20.00 Years   Dubai, United Arab Emirates   15 Jan, 2021
CC Staffing International Ltd.
1 Jobs Openings
Job LocationDubai, United Arab Emirates
EducationNot Mentioned
SalaryNot Mentioned
IndustryIT Services
Functional AreaNot Mentioned

Job Description

  • Provide presales technical support to the sales team & present tailored demonstrations or qualification discussions to customers.
  • Must have IBM QRadar SIEM & Resilient SOAR expertise for
  • o Multi-Site Implementation
  • o Integration with different components (SIEM, Ticketing System, Security Devices)
  • o Deploy & enable playbooks /runbooks
  • o Develop Architecture Diagrams & Documentation
  • o Knowledge of different security controls and mechanisms
  • o Programming / Scripting in Python or JAVA
  • o Expertise in writing parsers for IBM QRadar SIEM
  • o Experience developing integration solutions with web service APIs using REST/JSON.
  • CSOC Solution Sizing
  • Develop & respond to RFPs.
  • Assist the Security Consultants with Presales activities.
  • Services ? CSOC Consulting
  • Develop Methodology and SOW for
  • o CSOC Maturity Assessment
  • o CSOC Roadmap & Strategy
  • o CSOC Governance
  • Develop and present CSOC architecture to the end client.
  • Lead the CSOC project deployment delivery.
  • Conduct analysis using both quantitative and qualitative sources
  • Experience conveying technical information to non-technical consumers.
  • Contribute to and refine technical RFP/RFI responses.
  • Conduct & manage technical validation events (POC).
  • Participate in conferences, shows, exhibitions when appropriate and requested.
  • Experience with networking, network protocols & security infrastructures.
  • Develop, maintain and brief network maps and link diagrams.
Technology Experience:
  • Expert level experience in Operations of Cyber Security Operations Center ? is a must (SIEM ? IBM QRadar / SOAR ? IBM Resilient)
  • o System Administration & Management procedures
  • o Log Integration
  • o Developing & deploying of rules for Use Case
  • o Parser development
  • o Threat Intelligence Feeds integration
  • o SOC Operations Standard Operating Procedures
  • o Integration of SIEM with technologies (Email, AD, SNMP, SMTP, Incident Response Platform)
  • o Reports and dashboards for SOC
  • o Developing & deploying of Playbooks & Runbooks
  • o SOAR Operations Troubleshooting Procedures
  • o Integration of SOAR with (SIEM, Email, AD, SNMP, SMTP, Incident Response Platform)
  • o Reports and dashboards for SOC
  • o Experience with any other SOAR solution such as Demisto will be an added advantage
  • Expert level experience in deployment of any of the two below technologies:
  • o Threat Hunting
  • o Incident Forensics
  • o Endpoint Detection & Response
  • o Threat Intelligence
  • o Data Leak Prevention
  • Expert knowledge in the following technologies:
  • o Microsoft Active Directory Services
  • o TCP/IP Based Networking Principles
  • o Operating Systems (Microsoft / UNIX / Linux / MacOS)
  • o Network Systems / Network Security Systems (Firewalls / IPS / IDS, Proxies / Load Balancers/ Routers / Switches / Tapping solutions)

Keyskills :

APPLY NOW

Related Jobs

© 2023 HireeJobsGulf All Rights Reserved