Lead Consultant, IT Security

Security Consultant (Consulting & Professional Services)

The Security Consultant will provide Threat Detection & Response solutioning, process development, design security and business case, to build or enhance customers’ Security Operation Center (SOC).

Duties & Responsibilities:

• Identify and analyses gaps in client SOC environments across people, use cases, processes and incident response procedures.
• Conduct working sessions with client to understand requirements, identify current state and provide future state recommendations.
• Provide security and technical best practices for SOC deployments and operations.
• Understand SIEM architecture, data source onboarding and security tools.
• Apply cyber security framework to align with customer’s business requirements.
• Design and configure use cases, detection rules/queries in SIEM/EDR solutions.
• Understand security events from firewalls, IDS, IPS, Web Application Firewall (WAF), Endpoint, and other security data sources.

Requirements:

• 3-5 years’ proven hands-on experience in building SIEM/SOC or managed security services in a consulting, client facing delivery role.
• In -depth experience working with SIEM/SOAR such as Microsoft Sentinel, Splunk, IBM QRadar or SOAR –Splunk Phantom and/or Palo Alto XSOAR.
• Familiarity & experience of being based remotely/on client sites.
• Strong & demonstrable analytical problem-solving skills.
• A strong communicator both in client facing situations and in writing.

The following certifications/qualifications would be preferred:

• Degree in IT Security or related subject or relevant industry experience
• Certified in Cyber Security related Industry, Vendor or Professional Certification such as GCIA, GCIH, GMON, Security+, OSCP, CEH, CISSP, CISM, CCSP or ISO27001