What you’ll be doing...

Position is open in Verizon Professional Service Cyber Defense (PS CD).

Professional Services Cyber defense supports customer security projects in respect to:

  • Security integration
  • SOC/SIEM/CERT Services
  • MSS implementations
  • Identify and Access Management
  • Privacy

As our SIEM Engineer you will be responsible for managing use case creation, dashboards, tuning and log source optimization. This is a consultative position working closely with the customer and Verizon SOC to improve and optimize their SIEM implementation.

  • Understand customers’ business objectives, critical assets and IT architecture and devise new use cases or correlation rules to detect suspicious and malicious activity targeting these assets.
  • Use case development, including tuning of existing correlation rules to eliminate noise and false positives.
  • Create custom alert schema, reports, and dashboards.
  • Work closely with SOC analysts to improve use case efficiency and accuracy.
  • Facilitate Threat Hunting capabilities for SOC analysts.
  • Validate log sources and indexed data, search through indexed data to optimize search criteria.
  • Integrate and optimize intelligence feeds into SIEM.
  • Produce enterprise-level low and high level designs on SIEM solutions for global initiatives following those through to implementation via collaboration with project and support teams.
  • Implement or support SIEM implementations.
  • Produce documents on SIEM implementations, policies and procedures.
  • Oversee ongoing customer communication around the SIEM.
  • Identify opportunities to innovate, extend and enhance SIEM/SOC service delivery everywhere.

What we’re looking for...

You’ll need to have:

  • Bachelor’s degree or relevant work experience.

Even better if you have:

  • Bachelors or higher degree in Computer Science, Information Security or similar discipline.
  • Three or more years of SIEM experience as a senior SIEM consultant.
  • Expert technical skills in appropriate SIEM software, ideally RSA Witness.
  • Expert technical skills with scripting, parsing and query development.
  • Experience building and managing use cases and content, driven from customer requirements.
  • In-depth understanding of threat landscape and indicators of compromise.
  • Hunting techniques and forensic research experience.
  • Exceptional problem solving skills.
  • Ability to drive process improvements and identify gaps.
  • CISSP, SANS GIAC or related certifications.
  • Certifications: RSA NetWitness/SPLUNKLogs & Network Certified Analyst and/or RSA NetWitness Logs & Network Certified, Administrator certification.
  • Strong documentation and communication skills.
  • Capability to be proactive in engaging with customers, client executives and Verizon management teams.
  • Ability to prioritize and drive to results with a high emphasis on quality.
  • Ability to work in a team environment with a “can do” attitude capable of overcoming difficult challenges. Self-motivated, with keen attention to detail and excellent judgment skills. Ability to establish new standards for quality, performance or productivity/
  • Knowledge of SIEM (RSA Witness and or SPLUNK).
  • English language skills.

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.