The job below is no longer available.
You might also like
in Salt Lake City, UT
Senior SIEM Specialist
•30 days ago
Hours | Full-time, Part-time |
---|---|
Location | Salt Lake City, UT Salt Lake City, Utah |
About this job
Reporting to the Manager of Enterprise & Network Security, the SIEM Specialist has the responsibility for designing and implementing security technologies, with a strong focus on scripting to automate processes, integrate systems and develop tools to further the mission of the team
Specific Responsibilities Include:
* Implement and support enterprise logging, event correlation, SIEM, and analytics solutions
* Implement new security initiatives, utilizing technical solutions and policies & procedures.
* Leverage scripting skills to develop tools for the automation of security processes using Python, Perl, Bash, and PowerShell.
* Work with a wide variety of security tools, both network and system based, as needed.
* Participate in internal projects and initiatives, researching and recommending appropriate security solutions.
* Document processes, policies, and procedures as required.
* LI-EW1
Minimum Experience, Education, and Qualifications:
* At least four years combined experience in information security, network/system administration, and/or scripting/programming is required.
* Ability to learn new skills and technologies as required.
* Strong troubleshooting skills of complex network, system, and/or security problems.
* Excellent verbal and written communication skills.
* Highly disciplined and motivated, able to work independently, under direction, or as a member of a team.
* Must be willing to periodically work non-standard hours and be on call.
* Must be able to attain and maintain a Secret Security Clearance.
* U.S. Citizenship required.
Required Technical Knowledge:
* A proficiency with scripting or programming is a must.
* In depth knowledge of Windows and Linux/Unix, including applicable security principals.
* A strong understanding of networking and relevant protocols including TCP/IP, HTTP, SMTP, and DNS.
Preferred Technical Knowledge:
* Experience with Splunk, ArcSight, Securonix, or other SIEM like solutions
* Experience with firewalls, VPNs, IDS, or other commercial network security solutions.
* Experience with network sniffers (tcpdump, wireshark).
* Experience with threat vulnerability assessment tools.
* Experience working with SQL (MS SQL, MySQL, Oracle) and NoSQL (MongoDB, Hadoop) databases.
* Experience working with data interexchange formats such as XML, JSON, STIX, and TAXI.
* Working knowledge of the OSI model, dynamic routing protocols, and subnetting including CIDR notation.
* Security certifications such CISSP or GIAC a plus.
* Bachelors degree (or higher) in a related area of study is preferred
This position may be filled at a higher grade based on the successful applicant's skills and qualifications.
Equal Opportunity Employer -- minorities / females / veterans / individuals with disabilities / sexual orientation / gender identity. L3 maintains a drug-free workplace and performs pre-employment substance-abuse testing and background checks.
Specific Responsibilities Include:
* Implement and support enterprise logging, event correlation, SIEM, and analytics solutions
* Implement new security initiatives, utilizing technical solutions and policies & procedures.
* Leverage scripting skills to develop tools for the automation of security processes using Python, Perl, Bash, and PowerShell.
* Work with a wide variety of security tools, both network and system based, as needed.
* Participate in internal projects and initiatives, researching and recommending appropriate security solutions.
* Document processes, policies, and procedures as required.
* LI-EW1
Minimum Experience, Education, and Qualifications:
* At least four years combined experience in information security, network/system administration, and/or scripting/programming is required.
* Ability to learn new skills and technologies as required.
* Strong troubleshooting skills of complex network, system, and/or security problems.
* Excellent verbal and written communication skills.
* Highly disciplined and motivated, able to work independently, under direction, or as a member of a team.
* Must be willing to periodically work non-standard hours and be on call.
* Must be able to attain and maintain a Secret Security Clearance.
* U.S. Citizenship required.
Required Technical Knowledge:
* A proficiency with scripting or programming is a must.
* In depth knowledge of Windows and Linux/Unix, including applicable security principals.
* A strong understanding of networking and relevant protocols including TCP/IP, HTTP, SMTP, and DNS.
Preferred Technical Knowledge:
* Experience with Splunk, ArcSight, Securonix, or other SIEM like solutions
* Experience with firewalls, VPNs, IDS, or other commercial network security solutions.
* Experience with network sniffers (tcpdump, wireshark).
* Experience with threat vulnerability assessment tools.
* Experience working with SQL (MS SQL, MySQL, Oracle) and NoSQL (MongoDB, Hadoop) databases.
* Experience working with data interexchange formats such as XML, JSON, STIX, and TAXI.
* Working knowledge of the OSI model, dynamic routing protocols, and subnetting including CIDR notation.
* Security certifications such CISSP or GIAC a plus.
* Bachelors degree (or higher) in a related area of study is preferred
This position may be filled at a higher grade based on the successful applicant's skills and qualifications.
Equal Opportunity Employer -- minorities / females / veterans / individuals with disabilities / sexual orientation / gender identity. L3 maintains a drug-free workplace and performs pre-employment substance-abuse testing and background checks.