نشان کن
کد آگهی: KP5226316938
We are seeking a highly skilled and motivated Security Operations (SecOps) Engineer to join our growing cybersecurity team. The ideal candidate will have a strong background in Linux and container technologies, extensive experience with Splunk solutions, and security services and tools like PAM, VPN, … .You will play a critical role in implementation tools or services, securing infrastructure, shipping log to SIEM, automating operational tasksa and etc.Key Responsibilities:Design, deploy, and maintain SIEM infrastructure, with a primary focus on Splunk, including its architecture, indexing, forwarders, and clustering.Develop and manage log collection pipelines using technologies such as log shipping tools, syslog, and Splunk Universal Forwarders.Configure and maintain firewalls, PAM tools, VPN , EDR and enforce access control policies.Build, monitor, and secure infrastructure leveraging Docker, Kubernetes, and Linux environments.Automate workflows using SOAR platforms, especially Shuffle.Assist in developing security automation scripts and playbooks for efficient SecOps operations.Perform regular security monitoring and health checks of infrastructure and applications.Required Qualifications:3+ years of experience in a security operations or related engineering role.Proficiency in Linux administration and scripting (Bash, Python, etc.).Strong knowledge of Splunk, including architecture, performance tuning, dashboards, alerting, and correlation searches.Hands-on experience with Docker, Kubernetes, and container security best practices.Working knowledge of network protocols, firewalls, and common attack vectors.Knowledge of SOAR tools, particularly Shuffle.Solid understanding of PAM tools and their implementation.Experience working with Git and managing infrastructure or security as code.Preferred Skills:Industry certifications such as Splunk Certified Admin/Architect.Experience with other SIEM platforms in addition to Splunk (e.g., Elastic, Graylog).Familiarity with compliance standards such as NIST, ISO 27001.Exposure to vulnerability management tools and risk assessment methodologies.Experience with Wazuh for host-based intrusion detection.Knowledge of antivirus solutions and EDR (Endpoint Detection and Response) tools.
اسنپ فود
در تهران
اطلاعات شغل:
نوع همکاری: تمام وقت
مدرک تحصیلی مورد نیاز: مقطع تحصیلی اعلام نشده
نیاز به سابقه: حداقل 3 سال
ساعت کاری: تمام وقت
متن کامل آگهی:
We are seeking a highly skilled and motivated Security Operations (SecOps) Engineer to join our growing cybersecurity team. The ideal candidate will have a strong background in Linux and container technologies, extensive experience with Splunk solutions, and security services and tools like PAM, VPN, … .You will play a critical role in implementation tools or services, securing infrastructure, shipping log to SIEM, automating operational tasksa and etc.
Key Responsibilities:
Design, deploy, and maintain SIEM infrastructure, with a primary focus on Splunk, including its architecture, indexing, forwarders, and clustering.
Develop and manage log collection pipelines using technologies such as log shipping tools, syslog, and Splunk Universal Forwarders.
Configure and maintain firewalls, PAM tools, VPN , EDR and enforce access control policies.
Build, monitor, and secure infrastructure leveraging Docker, Kubernetes, and Linux environments.
Automate workflows using SOAR platforms, especially Shuffle.
Assist in developing security automation scripts and playbooks for efficient SecOps operations.
Perform regular security monitoring and health checks of infrastructure and applications.
Required Qualifications:
3+ years of experience in a security operations or related engineering role.
Proficiency in Linux administration and scripting (Bash, Python, etc.).
Strong knowledge of Splunk, including architecture, performance tuning, dashboards, alerting, and correlation searches.
Hands-on experience with Docker, Kubernetes, and container security best practices.
Working knowledge of network protocols, firewalls, and common attack vectors.
Knowledge of SOAR tools, particularly Shuffle.
Solid understanding of PAM tools and their implementation.
Experience working with Git and managing infrastructure or security as code.
Preferred Skills:
Industry certifications such as Splunk Certified Admin/Architect.
Experience with other SIEM platforms in addition to Splunk (e.g., Elastic, Graylog).
Familiarity with compliance standards such as NIST, ISO 27001.
Exposure to vulnerability management tools and risk assessment methodologies.
Experience with Wazuh for host-based intrusion detection.
Knowledge of antivirus solutions and EDR (Endpoint Detection and Response) tools.
Key Responsibilities:
Design, deploy, and maintain SIEM infrastructure, with a primary focus on Splunk, including its architecture, indexing, forwarders, and clustering.
Develop and manage log collection pipelines using technologies such as log shipping tools, syslog, and Splunk Universal Forwarders.
Configure and maintain firewalls, PAM tools, VPN , EDR and enforce access control policies.
Build, monitor, and secure infrastructure leveraging Docker, Kubernetes, and Linux environments.
Automate workflows using SOAR platforms, especially Shuffle.
Assist in developing security automation scripts and playbooks for efficient SecOps operations.
Perform regular security monitoring and health checks of infrastructure and applications.
Required Qualifications:
3+ years of experience in a security operations or related engineering role.
Proficiency in Linux administration and scripting (Bash, Python, etc.).
Strong knowledge of Splunk, including architecture, performance tuning, dashboards, alerting, and correlation searches.
Hands-on experience with Docker, Kubernetes, and container security best practices.
Working knowledge of network protocols, firewalls, and common attack vectors.
Knowledge of SOAR tools, particularly Shuffle.
Solid understanding of PAM tools and their implementation.
Experience working with Git and managing infrastructure or security as code.
Preferred Skills:
Industry certifications such as Splunk Certified Admin/Architect.
Experience with other SIEM platforms in addition to Splunk (e.g., Elastic, Graylog).
Familiarity with compliance standards such as NIST, ISO 27001.
Exposure to vulnerability management tools and risk assessment methodologies.
Experience with Wazuh for host-based intrusion detection.
Knowledge of antivirus solutions and EDR (Endpoint Detection and Response) tools.
این آگهی از وبسایت ایران استخدام پیدا شده، با زدن دکمهی تماس با کارفرما، به وبسایت ایران استخدام برین و از اونجا برای این شغل اقدام کنین.
هشدار
گزارش مشکل آگهی
تماس با کارفرما
این آگهی رو برای دیگران بفرست
نشان کن
گزارش مشکل آگهی
جستجوهای مرتبط
پنجشنبه 13 تیر 1404، ساعت 09:56