I am currently supporting a business engaged in the setup and deployment of a new Security Information and Event Management (SIEM) solution. The scope of work includes replacing the existing Trend Micro infrastructure and rolling out CrowdStrike across all server environments to enhance threat detection and response capabilities.
Job Title: Security Consultant
Job Type: 3 month Contract
Contract: Outside I35
Location: Remote
Responsibilities:
* Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations.
* Design and implement SOAR workflows to automate incident response processes.
* Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives.
* Serve as the Subject Matter Expert (SME) for SIEM deployment, supporting data ingestion from sources such as AWS and Qualys.
* Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management.
* Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs).
* Build and customise dashboards to support real-time reporting and incident response activities.
If keen please apply!