Senior Security Engineer

• Ensuring the operational availability and efficiency of the SIEM and SOAR systems by providing 24x7 standby support.
• Identify and define system security requirements, onboarding and provide trouble shooting on new devices to EDR and EDS system.
• Liaise with and advise external or internal parties for any problems surfaced with regards to security infrastructure or customer devices.
• Problem resolution within SLA time frame

• Designing of SIEM implementation and the placement of loggers
• Configure, patch and troubleshoot of the automation/orchestration engine, to ensure the performance and availability.
• Liaise with and advise external or internal parties for any problems surfaced with regards to Automaton & Orchestration infrastructure.
• Develop playbooks to automate new Use Cases for event detection, incident ticket creation, incident responses for new threat landscape and new containment parameters identified from the Tier 3 Security Threat analyst.
• Develop Use cases to reduce false positive, for new threat landscape, for new log sources, etc.
• Configure, patch and troubleshoot of the EDR solution, to ensure the performance and availability.
• Liaise with and advise external or internal parties for any problems surfaced with regards to EDR infrastructure.
• Configure and troubleshoot and ensure security status of ASOC infrastructure devices, and client and the Institutions managed security devices.
• Implement and monitor security measures for the protection of computer systems, networks and information.
• Manage and handle client change request on Managed devices.

• Experience in Carbon Black and IBM Q Radar or other SOAR and SIEM systems.