Senior Security Engineer - Blue Team (Remote)

Bachelor's degree in Computer Engineering, Electronics Engineering, or equivalent. Minimum 4 years of experience in IT Security Architecture & Services. Strong knowledge and hands-on experience with security technologies such as WAFs, SIEM, SOAR, EDR, ETP, vulnerability scanning tools, and deception technologies. Hands-on experience with one of the SOAR tools (e.g., XSOAR, Resilient) is preferred. Strong understanding of network security devices (e.g., firewalls, IPS/IDS). Knowledge of Syslog, HTTP, and database log formats. Experience with Unix and Windows operating systems. Deep understanding of the attack lifecycle and its stages. Proficiency in Python or other scripting languages. Holding or willing to take the AWS Security Specialist Certificate. Preferably holding industry-recognized certificates (e.g., CEH, AWS Sec). Splunk Core Certified Power User is a plus. Strong analytical, critical thinking, and problem-solving skills. Ability to communicate technical details effectively to various stakeholders. A proactive, curious mindset with a keen interest in researching emerging cybersecurity threats and trends.

Management and Maintenance of SIEM Tools Rule Creation and Optimization Threat Analysis MITRE ATT&CK Framework Integration Incident Response False Positive Reduction Log Management Security Metrics & Reporting Database and EDR Tool Management Cyber Intelligence & Threat Hunting Tabletop Exercises