PricewaterhouseCoopers
Job Description & Summary As a detection specialist you will act as a focal point in the analysis and development of detection rules and automation playbooks. The main tools used are Splunk and XSIAM. Proven experience in security management of information and analysis of events, preferably in Splunk and XSIAM. Domain of architecture and functionalities of market SIEMs, preferably Splunk and XSIAM. Ability to create personalized alerts, dashboards and reports. Experience search languages such as: SPL, XQL, KQL, LEQL, Sigma Experience with scripts and task automation, preferably in Python and Shell. Strong understanding of security practices and frameworks, such as MITRE ATT&CK, NIST, etc. Ability to identify, analyze, and respond to threats. Excellent analysis skills to interpret large volumes of data and identify patterns or anomalies. Ability to correlate SIEM events with system and network logs to determine potential threats by correlating them with TTPs. Criar e desenvolver novas estrat gias de detec o, correla o e agrega o. Ability to explain technical concepts to a non-technical audience. Experience in preparing reports and presenting findings to stakeholders and management. Proactivity to stay up-to-date on the latest cybersecurity trends. Willingness to learn new tools and techniques as the threat landscape evolves. Easy communication and teamwork. Certifies is: Certifications from SIEM manufacturers (Palo Alto, Splunk, Microsoft, among others). Vendor-neutral safety certifications are assessed. Academic form: Bachelor’s degree in Information Security, Computer Networks, Computer Science, Information Systems, Software Engineering or related courses. Language: English advanced.
More info
To apply for this job please visit www.naukrigulf.com.