Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats.

Experience in Security Response and Monitoring Implemented any SIEM solutions;

Hands on experience in port scan and vulnerability scanning techniques;

Strong ArcSight ESM and Splunk skills from end tend understanding of the technology;

Strong understanding of Security orchestration, automation and response technology;

Implemented multiple SOAR playbooks/projects;

Strong understanding of Correlation, Normalization, Parsing, and syslog formats and events in general;

Strong understanding of SIEM and the required infrastructure;

Strong understanding of SIEM concepts and best practices;

Should have architect level knowledge in Information Security domain;

Should have design, build or consulting experience on any of the leading SMR tools;

Expert on different standards and frameworks CIS, COBIT, IS17799 27001, NIST SP800-53, ITIL v2, HIPAA, FFIEC, NERC-CIP, PCI-DSS, CIS, OWASP Windows administration skills Application servers, web services, remote access, file print services, server virtualization Active Directory Performance monitoring, logs alerts Network fundamentals Infrastructures such as VPN, LAN, WAN, wireless network, network topologies, and access methods Hardware such as switches, routers, media types Protocols and services such as OSI model, IPv4, IPv6, name resolutions, networking services, TCP/IP Security fundamentals Types of threats, attack vectors Network vulnerabilities and attacks User authentication, permissions, password policies, audit policies, encryption, cryptography Physical security, internet security, wireless security, and core security principles Familiarity in security monitoring tools and technologies Splunk, SIEM, IBM QRadar, Demisto, Splunk Phantom, Azure Sentinel

Minimum 5 year(s) of experience is required