Capgemini
Anywhere in UK, United Kingdom
Salary : 15,500 - 19000
Role Description:
• Technical knowledge across a range of SIEM platforms (MS Sentinel, QRadar, DEVO, Splunk, Huntsman etc)
• Onboarding of Data Sources, Logs/Event sources to the SIEM platform
• SIEM platform tuning / configuration / parsing / Removal of false positives
• Production of SIEM Use cases & Playbooks
• SIEM Platform Capacity Management
• SIEM Platform Level 3 Device Maintenance
•Vendor engagement for software updates
•SIEM Platform Testing
•Execution of technical integrations identified by the Lead Security TDA & Security TDA
•Process any Unresolved Issues, False Positives and Create Advanced Correlation rules
•Implement Use cases in Production & Run books.
•Improve/Integrate New Technological Components to reduce MTTD and MTTR
•Validate Logging as per Logging Framework.
•Manage Tooling issues and Licensing
• Technical knowledge across a range of SIEM platforms (MS Sentinel, QRadar, DEVO, Splunk, Huntsman etc)
• Onboarding of Data Sources, Logs/Event sources to the SIEM platform
• SIEM platform tuning / configuration / parsing / Removal of false positives
• Production of SIEM Use cases & Playbooks
• SIEM Platform Capacity Management
• SIEM Platform Level 3 Device Maintenance
•Vendor engagement for software updates
•SIEM Platform Testing
•Execution of technical integrations identified by the Lead Security TDA & Security TDA
•Process any Unresolved Issues, False Positives and Create Advanced Correlation rules
•Implement Use cases in Production & Run books.
•Improve/Integrate New Technological Components to reduce MTTD and MTTR
•Validate Logging as per Logging Framework.
•Manage Tooling issues and Licensing