Content Engineer SIEM/SOAR
Jerusalem, Israel
IT & Information Security – IT /
Full time /
On-site
The Position
You will manage the whole cycle of SIEM/SOC/SOAR and some tools related to it including EDR, Honey pots and log collectors.
What your job will look like:
- Establish and develop the Security Operations Center (SOC) infrastructure from inception
- Deploying essential systems such as SIEM, SOAR, EDR, Honey Pots, and log collectors
- Implement automation solutions to streamline SOC operations, utilizing Python scripting and dedicated SOAR (Security Orchestration, Automation, and Response) systems to reduce manual tasks effectively
- Conduct comprehensive investigations including Malware Analysis, Digital Forensics and Incident Response (DFIR), and proactive Threat Hunting procedures
- Work with CISO's office to provide auditing requirements and ensure compliance with regulatory standards
- Conduct POC for new tools and solutions to implement in the SIEM/SOC cycle
All you need is:
- 4 years of experience as a backend engineer
- Bachelor’s degree in computer science, Information Technology, or a related field; relevant certifications (e.g., CISSP, CEH) preferred
- Proven experience in building and managing SOC infrastructure, including hands-on experience with SIEM (preferably Qradar), EDR (preferably CrowdStrike), SOAR and Other security tools
- Expertise in conducting advanced security investigations and implementing threat detection strategies.
- Excellent communication skills with the ability to collaborate effectively across teams and present findings to stakeholders.
- Proficiency in scripting languages such as Python for automation purposes