Senior Associate – SIEM/SOAR Engineering
Tasks
- Administer and optimize Splunk Enterprise and Splunk ES
- Apply MITRE ATT&CK framework
- Apply NIST framework
- Build SIEM use cases for cyberattack detection
- Conduct threat hunting using threat intelligence
- Correlate security events across data sources
- Develop dashboards workbooks and alerts
- Implement SOAR workflows
- Implement security information management practices
- Integrate log sources with Azure Sentinel via REST API
Perks/Benefits
- N/A
Skills/Tech-stack
ArcSight | Azure Functions | Azure Monitor | Azure Security | Azure Security Center | Azure Sentinel | Behavior analytics | Defender ATP | Demisto | KQL | Log Analytics | Logic Apps | MITRE ATT and CK | Machine Learning | Microsoft Defender | Microsoft Defender ATP | NIST | Network Security | Network Security Group | Phantom | Python | REST API | SIEM | SOAR | SPL | Security Center | Security Group | Splunk | Splunk ES | Splunk Enterprise | Threat Intelligence | Threat hunting | User and entity behavior analytics
Education
N/A
Roles
Analyst | Cybersecurity Engineer | Engineer | Security | Security Analyst
Related jobs
-
Archer | COBIT | Cloud Architecture | Cloud Migration | ComplianceMid-level Full TimeAAC Olivos, Argentina3d ago
-
JSOC - Senior Security Engineer BRL 105K-120KAPI Integration | Automation | Bash | Binary Analysis | Brand ProtectionCareer growth and development | Community causes involvement | Health and wellbeing resources | Paid vacation | Personal daysSenior-level Full TimeRosario, Santa Fe Province, AR4d ago
-
IT Operations & Digital Support Engineer USD 76K-119KAPI Integration | Automation | CIAM | Customer Data Cloud | DB2Incident response rotation | Remote work | Rotating shiftsMid-level Full TimeM5500EPH, Argentina R4d ago
-
API Security | AWS | Attack Surface Detection | Attack surface | AzureAdditional Sick Days | Additional vacation days | Flexible benefits | Health coverage | Learning SupportSenior-level Full TimeBuenos Aires4d ago
-
Security Engineer GBP 47K-60KAWS | AWS CloudFormation | CI/CD | GCP | IAMFlexible days off | Health plan | Home office bonus | Professional growth courses | Remote workMid-level Full TimeArgentina R4d ago
-
Senior Security Infrastructure Engineer USD 60K-114KAI Automation | AWS | Alert Tuning | Application Telemetry | CI/CDSenior-level Full TimeArgentina, Remote R8d ago
-
Incident Response Developer SR JP033CA USD 64K-72KAI Agents | API Integrations | AWS | AWS Lambda | AzureCareer plan | Engineering autonomy | International team collaboration | Long-term growth | Remote workSenior-level Full TimeBuenos Aires R8d ago
-
800-82 | 8021X | Armis | CIS Controls | CiscoSenior-level Full TimeAAC Olivos, Argentina9d ago
-
800-82 | 802.1x | CIS Controls | DCS | DNP3Mid-level Full TimeAAC Olivos, Argentina9d ago
-
AAA | BGP | Cisco ISE | Cisco Routing and Switching | Cisco routingSenior-level Full TimeAAC Olivos, Argentina9d ago
-
JSOC - Principal SIEM Engineer BRL 112K-129KAWS | Apache Kafka | Bash | Beats | CI/CDCareer growth and development | Community involvement opportunities | Health and wellbeing resources | Hybrid work environment | Paid vacationSenior-level Full TimeRosario, Santa Fe Province, AR11d ago
-
JSOC - Senior Detection Engineer BRL 112K-129KAlert Tuning | Alert fatigue | Alert prioritization | Data Exploration | Detection MetricsCareer growth and development opportunities | Community involvement opportunities | Health and wellbeing resources and programs | Hybrid working environment | Inclusive collaborative environmentSenior-level Full TimeRosario, Santa Fe Province, AR11d ago
-
JSOC - Cybersecurity Specialist, Digital Threat Hunting BRL 105K-118KCredential harvesting | DNS | Dark Web | Dark web monitoring | Domain RegistrationCareer growth and development | Community involvement opportunities | Health and wellbeing programs | Hybrid work environment | Inclusive collaborative environmentMid-level Full TimeRosario, Santa Fe Province, AR11d ago
-
Director of Information Security ID43394 USD 163K-209KAwareness Training | By Design | Cloud Security | DevSecOps | IEC 27001Flextime | Mentorship | Personalized growth roadmaps | Techtalks | Work from homeExecutive-level Full TimeBARRIO ARCA, Argentina R13d ago
-
Ciso Id43394 GBP 45K-55KAwareness Training | By Design | Cloud Security | DevSecOps | ISMSFlexible schedule | Mentorship | Office options | Remote work options | TechtalksSenior-level Full TimeJOSE MARTI, Argentina13d ago
-
Director of Information Security ID43394 USD 171K-215KAwareness Training | Blue Team | By Design | Cloud Security | Compliance ManagementEducation budget | Fitness budget | Flexible schedule | Mentorship | Remote work optionsExecutive-level Full TimeMAR DEL PLATA, Argentina13d ago
-
Director of Information Security ID43394 USD 171K-215KBy Design | Cloud Security | DevSecOps | IEC 27001 | ISMSEducation budget | Fitness budget | Flextime | Mentorship | Office optionsExecutive-level Full TimeROSARIO, Argentina13d ago
-
Director of Information Security ID43394 USD 171K-215KBy Design | Cloud Security | DevSecOps | ISMS | ISOIEC 27001Flextime | Mentorship | Office work options | Personalized growth roadmaps | Remote work optionsExecutive-level Full TimeBARILOCHE, Argentina13d ago
-
Director of Information Security ID43394 USD 171K-215KAwareness Training | Cloud Security | DevSecOps | IEC 27001 | ISO/IECFlexible schedule | Mentorship | Office options | Remote work options | TechtalksExecutive-level Full TimeJOSE MARTI, Argentina13d ago
-
Director of Information Security ID43394 USD 171K-215KAwareness Training | By Design | Cloud Security | DevSecOps | IEC 27001Flexible schedule | Mentorship | Office options | Remote work options | Training sessionsExecutive-level Full TimeTUCUMAN, Argentina13d ago
-
JSOC - Cybersecurity Specialist - Incident Response BRL 92K-108KAPIs | Application Firewall | Automation and response | Content Filtering | CrowdStrike FalconCareer growth and development opportunities | Community involvement opportunities | Health and wellbeing resources | Hybrid work environment | Paid personal daysMid-level Full TimeRosario, Santa Fe Province, AR17d ago
-
Antivirus | Cybersecurity Framework | EDR | Encryption | Identity ManagementEntry-level Full TimeBuenos Aires, Argentina18d ago
-
Lead Security Engineer (AI-Native) USD 158K-237K800-171 | AI tools | AWS | Amazon IAM | Business ContinuityAI tools access | Flexible paid time off | Holiday pay | Learning membership access | Remote workSenior-level Full TimeRemote - Argentina R18d ago
-
Senior Backend Engineer, Security Automation USD 147K-204KDesign Patterns | Docker | Kubernetes | Linux | Message QueuesFlexible working hours | Fully remoteSenior-level Contract Full TimeBuenos Aires, Buenos Aires, Argentina - … R19d ago
-
Data Engineer – Azure Cloud & Security COP 54000K-74400KApplication Security | Application Security Group | Azure Data | Azure Data Factory | Azure DevOpsComprehensive benefits | Flexible work model | Hybrid work option | Inclusive culture | Leadership visibilityMid-level Full TimeColombia; Argentina R21d ago