Information Security Lead

At TE, you will unleash your potential working with people from diverse backgrounds and industries to create a safer, sustainable and more connected world. 

WHY TO JOIN:

TE Connectivity’s Information Security and Compliance Teams execute security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs. They research attempted efforts to compromise security protocols, maintain security systems for routers and switches, administer security policies to control access to systems, maintain the company’s firewall and use applicable encryption methods. TE’s Security and Compliance Teams also provide information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information. The SIEM/SOAR Engineer is an expert in deploying, configuring, and managing a Security information and event management (SIEM) tool. They are responsible for creating alarms and dashboards related to relevant security data/threats/events. In addition, they are able to automate responses to alarms as well as the enrichment of data from outside sources. They are competent to work in all aspects of managing security controls and products.

FULLY REMOTE POSITION

YOUR MAIN TASKS:

• Design, develop, and implement security information and event management (SIEM) rules and detections within the Devo SIEM platform
• Configure and maintain log sources across diverse security and IT systems to ensure comprehensive data collection
• Utilize Regex for efficient log parsing and extraction of relevant security events
• Fine-tune detection rules to minimize false positives and negatives, optimizing threat identification accuracy
• Develop and implement SOAR (Security Orchestration, Automation, and Response) workflows to automate incident response tasks
• Investigate security alerts and incidents, conducting root cause analysis to identify and remediate threats
• Collaborate with the security operations center (SOC) team to ensure effective incident response and threat hunting
• Stay current with emerging threats and security best practices, recommending improvements to the SIEM configuration
• Document SIEM configurations, detection rules, and incident response procedures

YOUR IDEAL BACKGROUND:

Required Qualifications:

• 3+ years in Information Security SIEM administration, parser development, cybersecurity content development, creating queries, alerting and log analysis (or similar logging role)
• 3+ years’ experience in scripting / process automation
• 3+ years’ operating and supporting a large enterprise environment
• Experience with security configuration of operating systems, network devices, etc. 
• Demonstrated experience with at least one programming/scripting language
• Demonstrated experience with securing all aspects of an enterprise
• Demonstrated experience in understanding networking technologies and protocols
• Demonstrated some systems administration experience with Windows and Linux/UNIX-based operating systems
• Participate in an on-call schedule for high priority issues
• Experience in a technology-planning role
• Experience with new technology evaluations, software package selection and buy vs. build analysis

Preferred Qualifications:

• Experience with Devo (or next-gen SIEM)
• Experience with AWS, Azure, SAAS logging and cloud technologies in general
• Experience with EDR technologies
• Familiarity with common logs from different systems: Windows/Linux/Cloud etc. 
• Advanced Scripting – Powershell, Python, etc
• API integration/automation experience
• Experience with process automation / at least one major SOAR tool 

#jobsEMEAIS

ABOUT TE CONNECTIVITY:
TE Connectivity is a global industrial technology leader creating a safer, sustainable, productive, and connected future. Our broad range of connectivity and sensor solutions enable the distribution of power, signal and data to advance next-generation transportation, renewable energy, automated factories, data centers, medical technology and more. With more than 85,000 employees, including 8,000 engineers, working alongside customers in approximately 140 countries. TE ensures that EVERY CONNECTION COUNTS. Learn more at www.te.com and on LinkedIn, Facebook, WeChat, Instagram and X (formerly Twitter).

WHAT TE CONNECTIVITY OFFERS:
We are pleased to offer you an exciting total package that can also be flexibly adapted to changing life situations - the well-being of our employees is our top priority!

• Competitive Salary Package
• Performance-Based Bonus Plans
• Health and Wellness Incentives
• Community Outreach Programs / Charity Events
• Employee Resource Group

Across our global sites and business units, we put together packages of benefits that are either supported by TE itself or provided by external service providers. In principle, the benefits offered can vary from site to site.