Security Engineer/SIEM Admin

Job Title: Security Engineer
Job Location: Abu Dhabi
Experience: 4 to 6 yrs

CyberGate Defense, a leading cybersecurity company, is seeking a Security Engineer with 4-6 years of experience to join our team. The successful candidate will be responsible for:

Job Summary:

The Security Engineer plays a critical role in defending the organization against cyber threats. This position requires a proactive and analytical individual who can effectively monitor, analyze, and respond to security events, enhance security infrastructure, and drive continuous improvement within the SOC.

Key Responsibilities:

1. Deep knowledge of QRadar/Arcsight; other SIEM technology expertise is also helpful.
2. Security operations experience such as incident management, intrusion detection, firewall deployment, and security event analysis.
3. Experience with security devices and general IT installations, configuration, and troubleshooting (e.g., Firewall, IDS, etc.).
4. Development of custom parsers, Use Cases, and fine-tuning the Use Case based on the inputs from the SOC team.
5. Handle day-to-day activities required to achieve and maintain SIEM operations.
6. Perform upgrades on the SIEM components.
7. Deploy new Console, Event Processor, Data Node & Collector as required to collect data feeds.
8. Investigate and debug alerts generated in the console.
9. Review configurations for potential security weaknesses.
10. Develop content including rules, reports, and dashboards.
11. Conduct health checks that need to be performed on the SIEM.

Qualifications:

1. Bachelor's degree in Computer Science, Cybersecurity, or related field.
2. 4 years of experience in SOC operations or cybersecurity.
3. Strong understanding of networking concepts, security protocols, and industry best practices.
4. Experience with SIEM, IDS/IPS, firewalls, EDR, NDR, NAC, and other security solutions.
5. Relevant certifications (e.g., Security+, CEH, CISSP) are preferred.