Security Operations Lead
EarnestSalary not specified
Full Time
Senior (5 to 8 years), Expert & Leadership (9+ years)
Not SpecifiedCompensation
Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Cybersecurity, Information TechnologyIndustries
Requirements
- 6-7 years of experience as SIEM Engineer - SME with SIEM deployment and management
- Managing SIEM infrastructure like Microsoft Azure Sentinel and/or other SIEMs
- Working knowledge of Microsoft Azure cloud platform and log analytics workspaces
- Excellent knowledge of KQL (Kusto Query Language)
- Experience writing SIEM rules (cross-device and complex correlation) for detection in Microsoft Azure Sentinel and/or other SIEM
- Experience creating playbooks for SOAR in Microsoft Azure Sentinel
- Experience integrating log sources with Azure Sentinel and ArcSight
- Excellent knowledge of Logstash and ELK
- Experience creating and implementing logic apps in Azure Sentinel
- Experience creating workbooks for dashboards and apps in Azure Sentinel
- Ability to read coded scripts, modify, and debug programs
- Experience developing custom parsers for logs from firewalls, operating systems, applications, etc
- Experience working on various operating systems and platforms
- Bachelor's degree or equivalent combination of education and experience (Bachelor's in computer science or related field preferred)
- CISSP certification preferred
- Three or more years of experience in computer science, management information systems, or data security
- Experience with information and network security practices
- Experience with computer programming
- Experience with computer desktop packages (e.g., Microsoft Word, Excel)
- Experience with operating systems
- Experience with security software packages
- Experience with security architecture
- Analytical and problem-solving skills for resolving security issues
- Interpersonal skills to interact with customers and team members
- Communication skills to interact with team members and support personnel
- Skilled in implementing and configuring networks and network components
- Ability to work with relational databases
- Ability to work in a team environment
Responsibilities
- Manage SIEM infrastructure like Microsoft Azure Sentinel and/or other SIEMs
- Write SIEM rules (cross-device and complex correlation) to implement detection in Microsoft Azure Sentinel and/or other SIEM
- Create playbooks to implement SOAR in Microsoft Azure Sentinel
- Integrate log sources with Azure Sentinel and ArcSight
- Create and implement logic apps in Azure Sentinel
- Create workbooks to implement dashboards and apps
- Read coded scripts, modify, and debug programs
- Develop custom parsers to parse logs from different sources including firewalls, operating systems, applications, etc
- Work on various operating systems and platforms
Skills
SIEM
Microsoft Azure Sentinel
Azure
KQL
Log Analytics
SOAR
Playbooks
ArcSight
Logstash
ELK
Logic Apps
Workbooks
Custom Parsers
Kusto Query Language
DXC Technology
IT services for enterprise modernization and management
About DXC Technology
DXC Technology provides IT services to large enterprises, focusing on modernizing their critical systems and operations. The company uses the Enterprise Technology Stack to enhance IT infrastructure, optimize data architectures, and ensure security across various cloud environments, including public, private, and hybrid. DXC operates on a contractual basis, offering consulting, system integration, and managed services to help clients improve their IT operations. What sets DXC apart from competitors is its strong commitment to innovation, sustainability, and corporate responsibility, which has earned it recognition as one of the Most Responsible Companies. The goal of DXC Technology is to be a trusted partner for enterprises, helping them achieve scalable and secure IT solutions while promoting inclusion and diversity within its workforce.
McLean, VirginiaHeadquarters
2017Year Founded
$14.6MTotal Funding
IPOCompany Stage
Consulting, Enterprise SoftwareIndustries
10,001+Employees
Risks
Emerging IT service providers offer cost-effective solutions, threatening DXC's market share.
Rapid technological changes may outpace DXC's innovation, risking service obsolescence.
Economic downturns could reduce IT spending, impacting DXC's long-term contract revenue.
Differentiation
DXC Technology is a Fortune 500 global IT services leader.
The company specializes in modernizing mission-critical systems for large enterprises.
DXC's Enterprise Technology Stack ensures security and scalability across cloud environments.
Upsides
DXC is recognized as a leader in the 2024 Magic Quadrant for Outsourced Digital Workplace Services.
The Quercus AI platform collaboration with Ferrovial and Microsoft enhances DXC's innovation capabilities.
DXC's role in transforming Italy's healthcare sector showcases its expertise in digital transformation.
Related Jobs
RemoteRemoteSenior SIEM Engineer
Keeper SecuritySalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Cloud Security Architect (R-00079)
True Zero TechnologiesSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSecurity Engineer, Insider Threat Detection & Response
OpenAISalary not specified
RemoteSecurity Analyst
Qualified.com$130,000 - $145,000/year
- Full Time
- Junior (1 to 2 years)
RemoteSecurity Engineer, Cloud Security
Red Cell PartnersSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteAnalytics Engineer
Machinify$180,000 - $200,000/year
- Full Time
- Mid-level (3 to 4 years)
RemoteSenior Manager, Incident Reponse
Vultr$150,000 - $225,000/year
- Full Time
- Senior (5 to 8 years)