Administrator - Security Analysis, SIEM

Job Summary

The Security Event Administrator plays a critical role in the Support & Operations team by independently resolving security-related incidents, conducting root cause analyses, and ensuring adherence to quality standards. This position is pivotal in enhancing customer satisfaction through effective ticket resolution and on-call support, contributing to the overall success and security posture of the organization.

Key Responsibilities

1. Analyze Security Events Using Siem Tools To Investigate Incidents And Provide Actionable Insights, Ensuring Compliance With Quality Standards And Regulatory Requirements.

2. Implement Technical Solutions For Security Event Management By Configuring And Optimizing Siem And Soar Tools, Enhancing The Efficiency Of The Incident Resolution Process.

3. Conduct Root Cause Analysis For Escalated Issues To Identify Underlying Problems And Recommend Preventative Measures, Promoting Continuous Improvement In Operations.

4. Resolve Support Tickets Independently While Meeting Agreed-Upon Slas, Ensuring Timely And Effective Resolutions That Contribute To Positive Customer Experiences.

5. Create And Maintain A Knowledge Base To Document Solutions And Best Practices, While Providing Training And Coaching To New Analysts, Fostering A Culture Of Knowledge Sharing.

Skill Requirements

1. Strong Understanding Of Security Event Analysis And Incident Response Using Siem Tools.

2. Proficiency In Implementing Technical Solutions Within Siem And Soar Frameworks.

3. Solid Analytical Skills For Conducting Root Cause Analyses And Troubleshooting Security Incidents.

4. Familiarity With Quality Standards And Regulatory Compliance In Support Operations.

Other Requirements

1. Optional But Valuable: Certifications In Security Information And Event Management (Siem) Or Related Security Certifications Such As Certified Information Systems Security Professional (Cissp) Or Certified Information Security Manager (Cism)