RemoteLeaf Logo
Log in Sign up

Security Operations Center (SOC) Engineer

4 hours, 27 minutes ago
Pakistan
Full-time
Mid Level
Security Analyst
DevOps and Infrastructure
DNS HTTP Metasploit PowerShell Python SIEM Splunk TCP/IP
Apply Now
FirmaTRUST

FirmaTRUST

FirmaTRUST provides AI-driven managed IT services and advanced cybersecurity solutions, ensuring 24/7 global human support to help businesses operate securely and efficiently without downtime.

Internet Software & Services
Founded 1996
View All Jobs 3

Description

  • Monitor and analyze security, network, database, and application activity to identify threats and suspicious behavior.
  • Develop and implement SIEM solutions internally and for clients.
  • Build and maintain SIEM content such as use cases, dashboards, reports, rules, filters, trends, and lab sessions.
  • Administer and operate the SIEM platform, including log source health, parsers, alerts, and reports.
  • Assess, prioritize, escalate, and manage security alerts from SIEM and other event sources.
  • Correlate events and logs to create threat scenarios and improve detection and response.
  • Lead imminent threat and zero-day response across the environment.
  • Translate threat intelligence into actionable controls across firewalls, IPS, malware detection, and other security platforms.
  • Track and resolve security incidents, collaborate with other teams, and recommend improvements.
  • Develop custom connectors and parsers for unsupported devices or IT assets.
  • Own and operate critical security solutions and help deploy new technologies to improve security.
  • Tune security tools to reduce false positives and false negatives.

Requirements

  • 2 to 5 years of professional experience.
  • Bachelor’s degree in an IT-related discipline.
  • At least 2 years of information security, auditing, or risk management experience in lieu of certifications.
  • Deep technical knowledge of system security and SIEM implementation.
  • In-depth understanding of Security Event Management from both technology/tool and process perspectives.
  • Demonstrated knowledge of TCP/IP networking and protocols such as HTTP, SSL/TLS, DNS, and SMTP.
  • Experience with SIEM platforms such as QRadar, Sentinel, Splunk, LogRhythm, or open-source SIEM tools like Wazuh and ELK.
  • Experience with vulnerability scanning tools, File Integrity Monitoring, Data Loss Protection, or similar security technologies.
  • Experience developing security scripts in PowerShell or Python for automated detection and scanning.
  • Experience with network stream analysis using PCAP data and packet reconstruction.
  • Experience executing incident response frameworks and handling procedures such as NIST and SANS.
  • Current knowledge of security threats, solutions, security tools, and network technologies.
  • Understanding of information security and compliance regulations such as ISO 27001, PCI DSS, and GDPR.
  • Excellent troubleshooting, problem-solving, and documentation skills.
  • Fluency in English, written and spoken.
  • Ability to work independently and as part of a team.
  • Willingness to travel as needed.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

INflow Federal

DevSecOps Engineer

INflow Federal 51-250 Aerospace & Defense

INflow Federal is seeking a fully remote DevSecOps Engineer to support an enterprise case management solution for Department of Defense mission partners by securing and automating cloud-based CI/CD and infrastructure operations in AWS GovCloud.

United States Full-time Senior DevOps Engineer Security Engineer
Agile AWS Bash CI/CD CloudFormation Docker ELK Stack Git GitLab CI Helm Jenkins Kubernetes PowerShell Prometheus Python Terraform
1 hour, 6 minutes ago
INflow Federal

Cyber Security Architect

INflow Federal 51-250 Aerospace & Defense

INflow Federal is hiring a fully remote Cyber Security Architect to design and sustain secure enterprise architectures for a modernized Department of Defense information system supporting mission operations.

United States Full-time Senior Security Engineer
Agile DevSecOps ELK Stack OAuth Penetration Testing SAML Splunk
4 hours, 22 minutes ago
66degrees

Security Identity Engineer, Contract

66degrees 251-1K IT Services

66degrees is hiring a Security Identity Engineer for a 6-month engagement to implement and support the SailPoint Identity Security Cloud platform for secure, scalable identity services.

United States Contract Senior Security Engineer
Active Directory AWS Azure GCP JSON OAuth OpenID Connect PowerShell Python REST API SAML Shell Scripting SOAP XML
6 hours, 7 minutes ago
MetroStar

Sr. Information Systems Security Engineer III (6588)

MetroStar 251-1K IT Services

MetroStar is hiring a Sr. Information Systems Security Engineer to protect its digital assets by designing, implementing, and maintaining cybersecurity controls across networks, systems, cloud environments, and compliance-driven solutions.

United States Full-time Lead Security Engineer
$156k-$193k
Cybersecurity Encryption Splunk
7 hours, 52 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers