SIEM Principle Engineer

Ameritas

Lincoln, NE Technology
SIEM monitoring and administration at an enterprise level.

At Ameritas, fulfilling life is what we do daily. We continuously strive to help our customers and employees enjoy life at its very best by reducing uncertainty, helping grow assets and protecting what is most cherished. We're here to help people put worry behind and the future ahead and help enable a life that's rich in family, happiness, health and financial security. When lives are fulfilled, our mission is fulfilled.

Ameritas Life Insurance Corp is seeking a SIEM Principle Engineer to drive the business by helping Ameritas to minimize risk and enabling a security-centric culture throughout the company.

Essential Job Functions

* QRadar SIEM administration and engineering on an enterprise scale
* Defines logging standards to meet requirements and compliance
* Coordinates and works with application and systems owners to configure logging to integrate with the SIEM
* Design and build QRadar content, correlation rules, and alerts
* Design and utilize Stealthwatch flows and create alerts and integration to the Enterprise SIEM
* Tune and troubleshoot QRadar and develop QRadar dashboards, and reports
* Create custom parsers as required for any new log sources
* Execute cadence for monthly data integrity and system health checks
* Designs and Implement ID/IPS configuration and creates regular reporting
* In coordination with IT designs and documents for firewall configuration policies
* Responsible for pen testing programs and red teams
* Evaluate and monitor capacity and usage, develop and forecasts for events per second and storage needs
* Roadmap and upgrade SIEM and related technologies
* QRadar administration or deployment certification or equivalent experience
* Coordinate with and support security operations
* Investigates security events across Windows, Linux, and desktop environments
* Provides SIEM training to team members
* Documents SIEM processes and procedures

Requirements

* 7+ years of SIEM experience required (QRadar preferred)
* Experience as the technical SME and owner of one or more security tools
* Advanced security and forensics investigative experience in Windows and/or Linux servers
* 5+ Networking and firewall experience
* CISSP or equivalent experience
* Excellent written and oral skills
* Bachelor's degree or equivalent work experience
* Advanced security investigative experience in Apple OSX a plus
* Familiarity with ID/IPS OWASP configurations a plus
* Experience with HIPAA and PCI a plus

We are Ameritas: proud to say we're in the business of fulfilling life.

Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled

Job ID: 1873

Posted 28 days ago

Share This Job