Description:
Required Skills and Qualifications:
- Education: Bachelor’s degree in Information Security, Computer Science, or a related field, or equivalent experience.
- Experience:
- Minimum of 4-6 years of experience in managing SIEM platforms, preferably with LogRhythm.
- Experience with LogRhythm deployment, administration, and troubleshooting.
- Strong understanding of security technologies (firewalls, IDS/IPS, endpoint protection, etc.).
- Knowledge of log management, event correlation, and incident response workflows.
- Technical Skills:
- Hands-on experience with LogRhythm platform components (Collectors, Processors, and Storage).
- Familiarity with Linux/Unix and Windows server environments.
- Knowledge of scripting languages (e.g., Python, PowerShell) for automation and customization.
- Familiarity with network protocols (e.g., TCP/IP, HTTP, DNS).
- Experience with creating and managing alerts, dashboards, and reports.
- Knowledge of security frameworks (NIST, CIS, etc.) and compliance regulations.
Preferred Skills:
- LogRhythm certifications (e.g., LogRhythm Certified Security Engineer).
- Experience with other SIEM platforms (Splunk, QRadar, etc.) is a plus.
- Experience with cloud environments and cloud-native SIEM solutions.
- Strong understanding of threat intelligence platforms and integration.
Soft Skills:
- Strong problem-solving and analytical skills.
- Ability to work under pressure and prioritize tasks effectively.
- Excellent communication skills, both verbal and written.
- Ability to work independently and as part of a collaborative team.