SIEM Engineer (Middle) in FORA, OOO

Let's get to know each other!

We have been developing successfully since 2002.

Drive is our lifestyle that gives birth to inspiration.

We are improving and improving. Implementation of innovations makes us leaders.

We invite you to cooperate SIEM Engineer (Middle).

For us important:

• Experience in a similar position with SIEM systems (elastic, qradar, splunk, ArcSight, etc. i.) from the 1st year
• Skills in working with common security tools (EDR, IDS/IPS, WAF, etc.) and general systems and tools Azure Sentinel, Azure AD
• Programming skills (KQL, Python, PowerShell)
• English language not lower than B1 level
• Higher education (IT, Cybersecurity, etc.) will be a plus
• li>
• Communicability, autonomy, attentiveness, purposefulness

In our team, you will:

• Do the administration of Elastic Cloud SIEM
• Configure SIEM data ingest, parse and display events
• Develop SIEM discovery rules for all data sources
• Configure new SIEM rules based on customer and team requests monitoring
• Create guides and reports

We guarantee:

• Interesting and diverse projects
• Convenient schedule: Mon-Fri, from 9:00 a.m. to 6:00 p.m.
• Remote collaboration
• Discounts from partners (gym, English courses, etc.)

We are waiting for your resume!

We consider feedback within 5 working days. If you have not received a response within this time, it means that we currently have no suitable offers, but we have saved your resume in our database.

Thank you for choosing FORA!