Consultant

Job description:

About the Role:We are seeking an experienced SIEM Engineer to join our team on a project basis. The successful candidate will be responsible for the migration of our log and threat detection capabilities from Splunk to CrowdStrike Next Gen SIEM. This is a unique opportunity to work on a high-profile project, leveraging your expertise in Security Information and Event Management systems.Key Responsibilities: Drive the technical aspects of migrating log and threat detection capabilities from Splunk to CrowdStrike Next Gen SIEM Design and implement a comprehensive migration plan, ensuring minimal disruption to existing security operations Develop and maintain documentation on the new SIEM system, including configuration guides, user manuals, and troubleshooting procedures Collaborate with cross-functional teams, including Security Operations, IT, and Compliance, to ensure a smooth transition and seamless integration with existing systems and processes Identify and mitigate potential risks and issues during the migration process Develop and execute comprehensive testing plans to validate the functionality and performance of the new SIEM system Provide training and support to security analysts and engineers on the use and management of CrowdStrike Next Gen SIEMRequirements: 3+ years of experience in designing, implementing, and managing SIEM systems (Splunk or similar) In-depth knowledge of log collection, parsing, and analysis Experience with threat detection and incident response methodologies Strong understanding of security event management, including alerting, correlation, and analytics Familiarity with CrowdStrike Next Gen SIEM or similar next-generation SIEM platforms Excellent problem-solving skills, with the ability to analyze complex technical issues and develop creative solutions Strong communication and collaboration skills, with experience working with cross-functional teams Ability to work in a fast-paced environment, prioritizing multiple tasks and meeting deadlinesNice to Have: Experience with cloud-based SIEM systems and migration projects Knowledge of scripting languages (e.g., Python, PowerShell) Certifications in SIEM, security, or related fields (e.g., Splunk Certified Architect, GIAC Certified Detection Analyst)

• Depending on the work environment, the subject matter expert may lead or be an active participant of a work-group with the need for specialized knowledge.
• Meet all agreed-upon turnaround times for deliverables, deliverable reviews, or deliverable sign-off
• Understands, articulates and implements best practices related to his area of expertise.
• Provides guidance on how his area of capability can resolve an organizational need and actively participates in all phases of the solution life cycle. Design Solutions and best practices to meet clients objective.
• Work with clients to identify business challenges and contribute to client deliverables by refining, analyzing, and structuring relevant data