We are looking for local consultant.
Summary L3 SME in the area of Security Data & Analytics. The position is for a proactive and experienced security support engineer with solid background with Linux platform as well as application support, change/incident management and various security practice areas with emphasis on event aggregation and correlation. The candidate should be able to quickly adapt to a fast-evolving environment relying on next generation logging, Big Data and Analytical solutions and take full ownership of the services and platform he/she is responsible for in production environment.
The successful candidate will be expected to:
-Change managementoPrepare, document, implement and verify changes including communicate changes to end-users and other impacted parties
-Incident, Problem managementoConduct Root Cause Analysis (RCA) , respond to incidents and participate in post mortem analysis.
-Tooling Design and implement monitoring solutions on various platforms
-Handle complex reporting requests from senior management and regulators
- Automate repetitive and manual processes
-Product onboardingoWork on defining Roles & Responsibilities (RACI) by designing and implementing a support modeloBuild functional QA/UAT environments and train L1/L2 teams
-Infrastructure supportoBuild and manage servers (RHEL) and manage custom databases (Sybase, Oracle, MySql, SQLite)
-Manage code-base and configuration via various version control systems
Qualifications/ Skills Required
- 5-8 years experience (IT Security)
-Linux administration?At least two of the following programming languages perl/python/shell/sql
- Experienced with regex and various parsing methods
-Experienced with Big Data and related technologies
-Experienced with multiple RDBMS products
-Experienced with SIEM technologies?Experience with policy-based security solutions
-Big Data technologies : HDFS, ES, Zookeeper, logstash, flume, kafka, hbase, spark, elastic search, MapR, Cloudera
-RDBMS products: Sybase, MySql, Oracle, MSSQL, DB2
-SIEM technologies: Splunk
-Analytics applications: Securonix?Security Certifications: CISSP, SANS (GCIA or similar)