Cybersecurity Engineer, SIEM/SOAR, Global
Remote - VA
Applications have closed
Vantage Data Centers
Vantage Data Centers provides innovative, scalable wholesale data center campuses to hyperscalers, cloud providers and large enterprises across North America and Europe.
Vantage is committed to being a workplace of inclusion, equity, respect and acceptance. We celebrate diversity and intentionally seek out opportunities to learn from one another’s experience.
Vantage Data Centers powers, cools, protects and connects the technology of the world’s well-known hyperscalers, cloud providers and large enterprises. Developing and operating across North America, EMEA and Asia Pacific, Vantage has evolved data center design in innovative ways to deliver dramatic gains in reliability, efficiency and sustainability in flexible environments that can scale as quickly as the market demands.
Security Department
The Vantage Global Security (VGS) Department for Vantage Data Centers is very hands on. In most cases, we specify, purchase, configure and maintain all networking and server hardware. We also work closely with partner Value Added Resellers (VARs) to learn about the latest technological changes so that we can make informed purchase decisions. We are always looking for ways to strike the best balance between technology, performance, and cost. Vantage Security Department also participates in designing each of our new data center building’s security infrastructure. If you like getting your hands dirty and helping to design, build and maintain Security infrastructure in a modern data center, then come work at Vantage. We’re expanding with many new builds!
Essential Job Functions
Experience with configuring and handling Elastic SIEM
Experience with configuring and running Swimlane/Turbine and automation of ticket creation
Keep up to date with the latest cybersecurity threats, vulnerabilities, and industry trends.
Update, manage and tune the SIEM solution to collect, analyze, and correlate security event data.
Design, configure, and manage the SOAR to aggregate data and automate actions, escalate incidents and generate alerts and reports on the status of the environment
Monitor and analyze security events, incidents, and alerts to identify potential threats and vulnerabilities.
Create playbooks and procedures to analyze and action SIEM and SOAR incidents.
Assist with designing and documenting work processes within the SOC.
Support SOC automation initiatives leveraging playbooks
Add /Remove log sources. Troubleshoot issues with log sources or systems with the vendor, and report system defects as needed.
Actively engage in security projects across the business to implement event and logging requirements.
Create rules for compliance and audit requirements and create and manage Watch Lists for current threats
Create technical documentation around the content deployed to the SIEM and SOAR
Collaborate with cross-functional teams to develop and maintain incident response plans and procedures.
Ensure the SIEM and SOAR system's performance, availability, and scalability.
Engineer SIEM solutions to support threat intelligence, detection engineering, threat hunting, adversary emulation, and response efforts.
Curate and develop security-focused analytical content that incorporates business impact and likelihood and criticality on regular basis or for ad hoc reports
Collaborate with other VDC departments regarding security issues, vulnerabilities and threats and remediation and notification.
Support incident response and remediation
Focus on automation opportunities
Generate automated reports on a schedule or ad hoc for VDC Audits, KPIs, and status updates
Hands-on troubleshooting and repair as needed.
Document all critical evolutions, lessons learned, and find possible efficiency gains in processes
Respond as needed when system maintenance or complications arise
Other duties may be assigned from time-to-time by management
Job Requirements
Associate of Science degree, or equivalent experience, in Information Technology or a combination of education and work experience.
3+ years of experience with SIEM and SOAR Management
Experience designing and integrating applications and log sources into a SIEM
Experience in designing and handling a SOAR solution.
Project management experience leading large scale projects with multiple deadlines and stakeholders
Strong computer skills including proficiency with Microsoft desktop and server operating systems, as well as Microsoft Office 365
Working knowledge of networking concepts (IP addresses, MAC addresses)
Experience with Elastic is strongly preferred
Data Center experience is strongly preferred, but not required
Able to plan, organize, and prioritize workload to meet deadlines
Strong communication skills (verbal and written) with the ability to communicate internally with team members as well as externally with vendors and other service providers.
Travel is expected to be less than 20%
We operate with No Ego and No Arrogance. We work to build each other up and support one another, appreciating each other’s strengths and respecting each other’s weaknesses. We find joy in our work and each other, actively seeking opportunities to inject fun into what we do. Our hard and efficient work is rewarded with an above market total compensation package. We offer a comprehensive suite of health and welfare, retirement, and paid leave benefits exceeding local expectations.
Throughout the year, the advantage of being part of the Vantage team is evident with an array of benefits, recognition, training and development, and the knowledge that your contribution adds value to the company and our community.
Don't meet all the requirements? Please still apply if you think you are the right person for the position. We are always keen to speak to people who connect with our mission and values.
Vantage Data Centers is an Equal Opportunity Employer
Vantage Data Centers does not accept unsolicited resumes from search firm agencies. Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired; such resumes will be deemed the sole property of Vantage Data Centers.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Automation Cloud Compliance Incident response KPIs SIEM SOAR SOC Swimlane Threat intelligence Vulnerabilities
Perks/benefits: Equity / stock options Flex hours Health care Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.