< Back to All Jobs

Senior Security Engineer

Location: Tel Aviv

Description

CyberProof is a cyber security services and platform company whose mission is to help our customers react faster and smarter – and stay ahead of security threats, by creating secure digital ecosystems. CyberProof automates processes to detect and prioritize threats early and respond rapidly and decisively.

CyberProof is part of the UST Global family. Some of the world’s largest enterprises trust us to create and maintain secure digital ecosystems using our comprehensive cyber security platform and mitigation services.

We are seeking a skilled and experienced Senior Security Engineer to join our onboarding team.

The Senior Security Engineer is responsible for content deployment and creation of technical integrations on the SIEM platforms.Lead technical integrations for Splunk, ArcSight and Sentinel

What will you be doing?

  • Creation and optimization of use cases in Azure Sentinel, Splunk, & ArcSight
  • Lead technical use case migration activities
  • Data source validation and health analysis
  • Define technical dependencies and requirements
  • Define data collection, filtering and parsing requirements
  • Create and document solution designs - HLD and LLD
  • Adjustment of new parsers and optimization of data connectors (where applicable)
  • Test and validate effectiveness of security analytics rules and queries 
  • Implementation of the Splunk Attack Range
  • Integration of the current core Alerts in Splunk ES
  • Establish Azure DevOps CI/CD pipelines


Requirements

  • Minimum 5 years with hands-on experience leading technical configurations, integrations for Splunk, ArcSight and Sentinel
  • 3+ years on Creation and optimization of use cases in Azure Sentinel, Splunk, & ArcSight
  • Proven experience to lead technical use case migration activities
  • 3+ years of experience on Data source validation and health analysis
  • 3+ years of experience to define technical dependencies and requirements, Splunk attack range, integration of core alerts in Splunk ES
  • 3+ years to define data collection, filtering and parsing requirements
  • 3+ years to create and document solution designs - HLD and LLD
  • Experience in creating new parsers and optimization of data connectors (where applicable)
  • Test and validate effectiveness of security analytics rules and queries 
  • Establish Azure DevOps CI/CD pipelines and Git repo
  • Working understanding of the tools and processes of a Security Operations Center. It is preferred that the candidate have at least 2 years working in a SOC, but this can be substituted with 5 or more years as a Solutions Architect in an MSSP or similar capacity.
  • Working understanding of the MITRE Framework.
  • Proven Business Analytic skills in customer facing roles.
  • Free thinker and ability to find creative ways to detect unwanted incidents through the evaluation of “non-standard” environmental events.
  • Excellent English language communications skills both oral and written.
  • Intermediate to Expert skills in Microsoft tools (Word, Excel, PowerPoint), and a confident presenter of ideas and concepts.


APPLY FOR THIS POSITION