Gray Tier Technologies is seeking a SIEM Engineer to join our growing team in support of a Security Operations Center on a newly awarded contract. The ideal candidate will have experience working in a network security environment, such as a Security Operations Center (SOC), Computer Emergency Response Team (CERT), Computer Incident Response Team (CIRT), Computer Incident Response Center (CIRC) or Cyber Security Incident Response Center (CSIRC).

Responsibilities:

Provide SIEM engineering efforts and provide direct support to SOC operations

- Serve as the lead for all Security Orchestration, Automation, Response (SOAR) activities within the SOC - SOAR activities include:

• Demonstrate SOAR capabilities via SIEM and ticketing system.
• Demonstrate SOAR capabilities via SIEM and remediation activities.
• Demonstrate areas where the application of SOAR will provide immediate return on investment.
• Implement solutions to enable or improve SOAR capabilities.

- Ensure availability of the SIEM and provide administrative oversight of the tool

- Responsible for the implementation, operations, maintenance and lifecycle management of the SIEM tool

- Revise and develop processes to strengthen the current operational activities; review policies and recommend changes to improve tool usage and governance

- Coordinate with stakeholders to build and maintain positive working relationships

- Excellent analytical and communicative skills along with collaborative, teaming and interpersonal skills

Minimum Requirements

• Minimum seven (7) years IT experience with at least two (2) years of experience in the role of SIEM/SOAR Content Development
• Splunk experience.
• BS Degree or additional work experience substitution

Secret Clearance Required