Lead SOC SIEM Security Engineer

Lead SOC SIEM Security Engineer (Rapid7, Microsoft Sentinel)

As a SOC SIEM Security Engineer, you are a highly technical, committed security professional with an emphasis on SIEM (Security Information Event Management) platforms, combined with a broad understanding of cybersecurity domains and today’s threats with a few years of experience immersed in General Security, IT, Security Operations culture and Enterprise or Managed Security Services SOC Teams. You will be working closely with our passionate Team of professionals - fellow SOC SIEM Engineers, Security Incident Responders, Threat Detection and Intelligence Experts, Security Architects, Engagement Managers, Software Architects. You will be reporting to the Manager of SOC SIEM Operations, TietoEVRY Cybersecurity Services. You will have a holistic contribution of the Security Operations SIEM Engineering within our global SOC.

You will be responsible for:

Ensuring the quality and value of the SOC SIEM Engineer output across all the activities

Initiating the SOC SIEM changes with the Customers and internally

Interacting with the SOC SIEM Team Members on a daily basis

Identifying areas to tune detections and enhance security efficacy

Contributing to creation of the SOC SIEM Standard Operating Procedures (SOP)

Working closely with the SOC Threat Detection team to elevate threat visibility

Sharing with SOC staff members the new tools, capabilities and processes

Contributing to the SOC SIEM Platform and Service innovation roadmap

Interacting with the SOC SIEM Development across platforms to ensure success

Providing input for Customer Briefings to the SOC Engagement Manager

Requirements for an ideal SOC Threat Analyst candidate:

10+ years in IT, Cybersecurity and SOC environments

General understanding of the security kill chain and MITRE ATT&CK Matrix

General understanding of security telemetry sources and analysis

General experience in threat detection - endpoint, network and cloud

Good feeling for the SOC environment dynamics and work ethics

Background in SIEM technologies - correlations, custom parsers and alarm triggers

Strong communication skills and high level of verbal diplomacy

Great organizational skill set and proactive mentality

Proven reporting and presentation skills

Security Technical Certifications (SANS, OSCP, vendor-related) highly desired

Expertise with Cloud SaaS SIEM Technologies (Rapid7, MS Sentinel) a big plus

Degree in Information Technology

Knowledge of Atlassian Stack (Confluence, Jira)

Knowledge of ServiceNow / other Customer Care platforms  

Finnish, Swedish and Norwegian language is a big plus

Fluency in English, both spoken and written

Join TietoEVRY Cybersecurity Services and grow your career with security talents.

About TietoEVRY

At TietoEVRY we are a team of professionals spread across many countries who are working on the frontline of a wide range of industries. We inspire, we engage and we deliver. We have global capabilities and a strong presence where our clients need it – in the Nordics or via local delivery centres across the globe.

Are you looking for a career with a company that both challenges and cares? Welcome to TietoEVRY. We are committed to developing enterprises and society through information technology. We believe in openness, independent thinking, and in giving our people the freedom to be their exceptional selves. We are the largest Nordic IT services company providing full lifecycle services for both private and public sectors. Our work puts us at the frontline of a wide range of industries.

We offer you the chance to make a difference and be part of the forefront of emerging businesses and technology, exchanging ideas with the best professionals. You will cooperate with colleagues in an international and evolving working environment, and increase your knowledge in a variety of areas.

We offer you a challenging position with great opportunities for professional growth. With us you will have the opportunity to directly influence your career development. If you have a good idea, people will listen to you. We believe that trust fosters freedom and creativity. Our culture is built on transparency and active sharing – a truly open environment.

Interested? We look forward to receiving your application and the opportunity to discuss with you!

About TietoEVRY

Welcome to an exciting journey. TietoEVRY creates digital advantage for businesses and societies. We are a leading digital services and software company with local presence and global capabilities. Nordic values and heritage are the foundation of TietoEVRY success. Let's build a brighter future. Together. 

Read more about us here.