Overview
On Site
$60 - $70 hourly
Accepts corp to corp applications
Contract - Independent
Contract - W2
Contract - Temp
Skills
Market Research
Modeling
Normalization
Fraud
Documentation
Vendor Relationships
Roadmaps
Software Design
Computer Science
Information Technology
Cyber Security
Amazon S3
Snow Flake Schema
Databricks
Scripting
Ansible
Regular Expression
Splunk
Cloud Computing
Amazon Web Services
Microsoft Azure
Python
Windows PowerShell
Management
Data Lake
Data Warehouse
Servers
Middleware
SaaS
PaaS
IaaS
SIEM
Information Security
CISSP
Information Systems
CISM
CISA
Certified Ethical Hacker
Artificial Intelligence
Messaging
Job Details
RESPONSIBILITIES:
A client with Kforce is seeking a SIEM/SOAR Engineer to join their team. This is a mostly onsite position with 1 day a week remote working out of Jersey City, NJ, Tampa, FL or Tempe, AZ offices.
Summary:
We are seeking a highly motivated SIEM and SOAR Engineer as part of the Engineering team to design and implement cutting-edge technology to improve security posture. This person will work with other engineering team members to drive the engineering standards and implementation across the global deployment.
Responsibilities:
* Design and implement various engineering solutions by working with other stakeholders
* Leverage industry trends and market research to adopt the best practices to enhance the SIEM and SOAR platforms
* Define SIEM and SOAR platform standards including data schema, modelling, normalization, monitoring and alerting
* Define standard patterns to integrate different systems into SIEM platforms; Ability to develop different scripts and products RegEx for configuring policy to detect security alerts as per threat, anomaly, etc.; Ability to conduct fraud analysis and threat detection
* Generate different types of reports using SIEM & SOAR data Identify opportunities to enhance the current baseline processes and configuration
* Produce engineering, integration and process related documentation
* Manage vendor relationships to drive roadmap, solution design, implementation and troubleshooting
* Work with key stakeholders of the services to ensure the expectations are meeting the requirements
REQUIREMENTS:
* Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field, or relevant industry certifications; Equivalent work experience is equally preferable
* At least 5+ years of experience in technology with emphasis on cyber security
* At least 3+ years of experience in SIEM and SOAR products such as Splunk, Elastic, Datadog, Cribl, etc.
* At least 1+ years of experience in Data Lake and data warehouse using products such as AWS S3, Snowflake, Databricks, etc.
* Experience with scripting is highly preferred like Python, Ansible, etc.
* Experience in creating trending, metrics, and management reports; Working knowledge in RegEx, Splunk search language, etc. is required
* Knowledge and experience operating in a hybrid-cloud environment
* Knowledge of modern security principles and their practical applications
* Knowledge and experience in AWS or Azure
* Knowledge and experience with programming language to automate tasks (e.g. Python or PowerShell)
* Experience with building and managing Security Data Lake and Data Warehouse
* Knowledge of various applications and systems that include Servers, security platforms, middleware, Clouds (SaaS, PaaS and IaaS), Containers, etc. to come up with the right approach of SIEM integration
* Ability to understand security risks and controls, to analyze various methods of controlling information security problems, determine the strengths and weaknesses of each method and implement the best cost-justified solution
* Ability to provide technical directions to other peer staff members, and to train new staff on the security team
Preferred Certifications:
* Certified Information Systems Security Professional (CISSP) Certified Information Systems Manager (CISM) Certified Information System Auditor (CISA) Certified Ethical Hacker (CEH)
The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.
This job is not eligible for bonuses, incentives or commissions.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
By clicking ?Apply Today? you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.
A client with Kforce is seeking a SIEM/SOAR Engineer to join their team. This is a mostly onsite position with 1 day a week remote working out of Jersey City, NJ, Tampa, FL or Tempe, AZ offices.
Summary:
We are seeking a highly motivated SIEM and SOAR Engineer as part of the Engineering team to design and implement cutting-edge technology to improve security posture. This person will work with other engineering team members to drive the engineering standards and implementation across the global deployment.
Responsibilities:
* Design and implement various engineering solutions by working with other stakeholders
* Leverage industry trends and market research to adopt the best practices to enhance the SIEM and SOAR platforms
* Define SIEM and SOAR platform standards including data schema, modelling, normalization, monitoring and alerting
* Define standard patterns to integrate different systems into SIEM platforms; Ability to develop different scripts and products RegEx for configuring policy to detect security alerts as per threat, anomaly, etc.; Ability to conduct fraud analysis and threat detection
* Generate different types of reports using SIEM & SOAR data Identify opportunities to enhance the current baseline processes and configuration
* Produce engineering, integration and process related documentation
* Manage vendor relationships to drive roadmap, solution design, implementation and troubleshooting
* Work with key stakeholders of the services to ensure the expectations are meeting the requirements
REQUIREMENTS:
* Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field, or relevant industry certifications; Equivalent work experience is equally preferable
* At least 5+ years of experience in technology with emphasis on cyber security
* At least 3+ years of experience in SIEM and SOAR products such as Splunk, Elastic, Datadog, Cribl, etc.
* At least 1+ years of experience in Data Lake and data warehouse using products such as AWS S3, Snowflake, Databricks, etc.
* Experience with scripting is highly preferred like Python, Ansible, etc.
* Experience in creating trending, metrics, and management reports; Working knowledge in RegEx, Splunk search language, etc. is required
* Knowledge and experience operating in a hybrid-cloud environment
* Knowledge of modern security principles and their practical applications
* Knowledge and experience in AWS or Azure
* Knowledge and experience with programming language to automate tasks (e.g. Python or PowerShell)
* Experience with building and managing Security Data Lake and Data Warehouse
* Knowledge of various applications and systems that include Servers, security platforms, middleware, Clouds (SaaS, PaaS and IaaS), Containers, etc. to come up with the right approach of SIEM integration
* Ability to understand security risks and controls, to analyze various methods of controlling information security problems, determine the strengths and weaknesses of each method and implement the best cost-justified solution
* Ability to provide technical directions to other peer staff members, and to train new staff on the security team
Preferred Certifications:
* Certified Information Systems Security Professional (CISSP) Certified Information Systems Manager (CISM) Certified Information System Auditor (CISA) Certified Ethical Hacker (CEH)
The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.
This job is not eligible for bonuses, incentives or commissions.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
By clicking ?Apply Today? you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.