SIEM Engineer (Remote)

New York, New York /
Satisfy – Security Operations Center /
Full Time
SKOUT CYBERSECURITY provides cyber security monitoring and unparalleled customer service to organizations around the globe. SKOUT's security team deploys the industry's most cutting-edge tools at affordable prices, providing the technology and protection to make cyber security accessible for all.

The SIEM Engineer is an expert member of the cyber security operations team and works closely with the other members of the Security Operations Center in support of a comprehensive, managed cyber security program. This role researches tool solutions, works with Information Technology to architect tool installation and adhere to Company timelines and schedules.

Role & Responsibilities

    • Provide security expertise across various SIEM platforms and log correlation methodologies
    • Understand various platform including systems, network and applications
    • Work with Information Technology, Cyber Security and the SOC personnel to architect security appliance solutions and create an auditing and logging strategy
    • Develop custom directives/correlation rules based on NIDS, Syslog, supplied use cases and other inputs to evaluate risk
    • Develop and modify SIEM Parsers using regex (regular expressions)
    • Apply Cyber Security Engineering and Network Security Engineering expertise to optimize SkOUT Secure Intelligence’s client protection posture
    • Determine which alerts are relevant for immediate action, which require additional investigation and which are not relevant
    • Tune security appliances for relevant alerting levels
    • Monitor, evaluate, and assist with the maintenance of assigned security systems in accordance with industry best practices to safe guard internal information systems and databases
    • Ability to conduct deep packet inspection and articulate findings in order to fine-tune alerts
    • Prepare event and incident documentation as needed
    • Maintain an expert understanding of vulnerabilities, response, and mitigation strategies used to support cyber security operations
    • Communicate with external customers and internal team members on a regular basis
    • Maintain certifications and attend training to remain current with the operation and installation of security appliances and industry best practices
    • Demonstrate ability and willingness to coach and train colleagues
    • Performs other related duties as assigned

Knowledge of Tools

    • SIEM (ArcSight, FortiSIEM, AlienVault, QRadar),
    • Unified Threat Management Devices,
    • Perform Full Packet Capture,
    • Network Monitoring, Intrusion Detection/Prevention Systems,
    • Vulnerability Scanning
Our Benefits:
Comprehensive medical, dental and vision insurance
Life Insurance
Disability Insurance
401K with a 4% Match
Generous PTO
Parental Paid Leave
Stock Options

Due to the volume of applications we receive only shortlisted candidates will be contacted.

SKOUT has preferred agency relationships and does not accept unsolicited agency resumes. Please do not forward resumes to our jobs email address, our employees or mail to our office locations. SKOUT is not responsible for any fees related to unsolicited resumes.

SKOUT is an equal opportunity employer who values diversity in our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. In fact we know that the most inclusive and diverse teams accomplish the most extraordinary results.