Cybersecurity Engineer/ SIEM & Security Operations Engineer

Apetan Consulting
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Tech stack

Systems Engineering
Computer Security
System Configuration
Intrusion Detection and Prevention
Intrusion Detection Systems
Information Systems Security Architecture Professional
Network Security
Network Segmentation
Security Information and Event Management
Software Vulnerability Management
Data Logging
Firewalls (Computer Science)
Web Filtering
Palo Alto Networks
Splunk
Security Orchestration, Automation & Response

Job description

We are seeking a Cybersecurity Engineer to join a Cyber Engineering team responsible for securing enterprise systems, applications, and infrastructure while enabling innovation and operational efficiency. This role focuses on designing, implementing, maintaining, and enhancing cybersecurity technologies and services across the organization., Cybersecurity Operations & Platform Management

  • Deploy, configure, maintain, upgrade, and optimize cybersecurity platforms and security services.
  • Support and manage enterprise security technologies including:
  • Security Information and Event Management (SIEM)
  • Endpoint Detection and Response (EDR)
  • Next-Generation Firewalls (NGFW)
  • Security Orchestration, Automation, and Response (SOAR)
  • Ensure cybersecurity systems remain current with security updates, patches, and vulnerability remediation requirements.
  • Engineer automated administration and management solutions for production environments.

Detection Engineering & Monitoring

  • Develop and enhance SIEM detection rules, analytics, dashboards, and alerting capabilities.
  • Create advanced queries to identify anomalies, insider threats, malware activity, and suspicious behavior.
  • Onboard and normalize security-relevant data sources into monitoring and observability platforms.
  • Implement logging, monitoring, and alerting configurations aligned with cybersecurity best practices.
  • Support security operations reporting and metrics for leadership and stakeholders.

Security Engineering & Architecture

  • Evaluate, design, test, and implement new cybersecurity technologies and solutions.
  • Review and provide recommendations for network security architecture and controls.
  • Support security designs involving:
  • Firewalls
  • Intrusion Detection Systems (IDS)
  • Intrusion Prevention Systems (IPS)
  • Content Filtering Solutions
  • Network Segmentation Technologies
  • Collaborate with infrastructure, systems, and application teams to improve overall security posture.

Vulnerability & Risk Management

  • Lead vulnerability review sessions and collaborate with technical teams on remediation efforts.
  • Support enterprise vulnerability management initiatives and security assessments.
  • Analyze vulnerabilities and recommend risk-based remediation strategies.
  • Ensure security solutions align with organizational security standards and frameworks.

Technical Support & Collaboration

  • Provide cybersecurity engineering support to developers, system administrators, and infrastructure teams.
  • Assist in troubleshooting complex security-related issues across enterprise environments.
  • Support ongoing security improvement initiatives and operational projects.
  • Maintain awareness of emerging threats, technologies, and industry trends.

Requirements

The ideal candidate will have hands-on experience with SIEM, EDR, firewall technologies, vulnerability management, and security engineering. This position requires a strong technical background in cybersecurity operations, detection engineering, network security, and infrastructure protection., * 3+ years of professional experience in cybersecurity engineering, security operations, network security, or a related field.

  • Hands-on experience with:
  • Splunk
  • Endpoint Detection and Response (EDR) platforms
  • Palo Alto Firewalls
  • Vulnerability Management tools such as Tenable
  • Security Information and Event Management (SIEM) solutions
  • Experience deploying, configuring, and maintaining enterprise security technologies.
  • Strong understanding of cybersecurity architecture, security monitoring, and incident detection.
  • Experience creating SIEM detection rules, searches, dashboards, and correlation logic.
  • Knowledge of vulnerability management processes and remediation practices.
  • Strong networking and systems engineering background.

Required Certifications

Candidates should possess at least one professional-level certification such as:

  • PCNSE (Palo Alto Networks Certified Network Security Engineer)
  • Splunk Architect
  • CCNP Security
  • JNCIP-SEC
  • Equivalent cybersecurity engineering certification

Apply for this position