SME - Security Investigations, SIEM

Job Summary

The Security Ops Subject Matter Expert plays a crucial role in ensuring timely and effective resolution of incidents and escalations within the support and operations domain. By leveraging expertise in security event investigation and SOAR technologies, this position is pivotal in maintaining high service quality and customer satisfaction while adhering to SLA requirements.

Key Responsibilities

1. Ensure Timely Resolution And Quality Compliance Of Escalated Security Incidents By Conducting Thorough Analyses Using Soar Tools And Techniques, Aligning With Agreed Slas.

2. Mentor Team Members And Administrators By Providing Technical Guidance On Security Event Investigations, Creating And Maintaining Standard Operating Procedures (Sops), And Facilitating Knowledge Sharing To Enhance Team Capabilities.

3. Validate Change Order Implementation Plans And Oversee Human Error Compliance, Contributing To Capacity Planning Discussions With Insights Derived From Security Event Investigations.

4. Foster Positive Customer Relationships By Actively Participating In Customer Meetings, Addressing Concerns, And Ensuring A Clear Understanding Of Security Issues Faced By The Business Segment.

5. Conduct And Validate Analyses Such As Root Cause Analysis And Trend Analysis Using Siem Tools, Presenting Detailed Reports To Key Business Stakeholders To Drive Performance Improvement.

Skill Requirements

1. Expertise In Security Event Investigation And Soar Technologies

2. Proficient In Siem Solutions And Related Technical Implementations

Strong Analytical And Problem-Solving Skills:

Excellent Communication And Presentation Abilities:

1. Familiarity With Incident Management Processes And Sla Adherence

Other Requirements

1. Optional But Valuable Certifications: Certified Information Systems Security Professional (Cissp), Certified Information Security Manager (Cism), Or Security Operations Center (Soc) Analyst Certification