Our client is a large financial services company involved in global initiatives and is currently undertaking a large transformation from a decentralized organization to a strong centralized organization model that is common in large banks and financial institutions.
They are currently looking for a seasoned IT Security Technical Lead with significant Security Incident & Event Management initiative experience.
Location: Detroit, Michigan...client will provide assistance with immigration and some relocation and successful candidates may also choose to live in Windsor, Canada and commute to Detorit.
Compensation: $100-110K US + bonus - client may start successful candidates on a contract to hire arrangement.
The Security Incident & Event Management (SIEM) Technical Lead is the primary Security Engineering role supporting the organization's SIEM implementation project. As the SIEM and Security Monitoring Project Technical Lead, the role scope will include but may not be limited to interfacing with Information Security, Architecture, Infrastructure, and business stakeholder teams as well as vendors to design, integrate, and implement a SIEM solution.
Responsibilities include, but are not limited to leading technical decisions related to the following:
1. Tool selection
2. Develop high level architecture
3. Develop detailed design
4. Lead configuration, testing, deployment, and post-implementation transition to operations team
SIEM components include, but are not limited to log collection, aggregation, data correlation, information reporting, alert tuning, and dashboard metrics for monitored systems. Monitored systems may include UNIX, Windows, and Linux operating systems, network infrastructure (IDS/IPS, firewall devices, routers, switches, etc.), and Database Activity Monitoring (DAM) based on company compliance requirements.
The SIEM Technical Lead role will include accountability for designing a complex monitoring solution, conducting and supporting associated pilots/prototype efforts, providing support and leadership as an engineer to project implementation and integration into the corporate environment, demonstrating expertise in monitoring and reporting, provide and accept peer transfer knowledge with other engineers and client security resources, and act as a security engineer by building and institutionalizing engineering principles, practices, and methods in all task activities.
Key responsibilities may include:
• The design of SIEM, factoring in legacy tools and processes and assisting in developing the future state solution that meets corporate requirements
• Lead technical design, development, and delivery of SIEM solution to the company enterprise
• Effective communication of SIEM solution design ideas, issues, best practices, etc. with the SIEM project team and operations teams to ensure they understand and support the design, development, and delivery of SIEM solutions in critical production and general support systems
• The demonstration of technical understanding in SIEM and the validation of technical acumen through peer interaction and architecture review council acceptance
• To act a specialist security engineer providing guidance, leadership, and technical support, ensuring quality development and delivery of SIEM solutions.
Illustrate complete knowledge of:
- Log Aggregation & Data Correlation designs
- Designing & deploying SIEM within complex architecture and large, geographically dispersed, interconnected network monitoring critical infrastructure systems and databases while minimizing bandwidth, data storage, and host utilization impact
- Dynamic and Static Security Information reporting
- Security Metrics Dashboard capture and presentation
- Alert Functionality and distribution
- Security Event capture and integration with client and related systems
The SIEM Technical Lead should als have the following:
** Extensive experience providing IT Security and Security Information Event Management Solutions to or for Banking, Financial Services or other high transaction environments.
** Significant Technical Management with operational responsibility experience.