Senior Cybersecurity - SIEM Engineer

5 days ago

Apply Now

Receive Emails with Similar Jobs

TE Connectivity

WebsiteLinkedInAll Job Openings

TE Connectivity is a global industrial technology leader creating a safer, sustainable, productive, and connected future. Our broad range of connectivity and sensor solutions enable the distribution of power, signal and data to advance next-generation transportation, renewable energy, automated factories, data centers, medical technology and more. With customers in over 140 countries across 20 industries, you can touch billions of lives and ignite a transformative spark through your work.

Connectors • Sensors • Industrial Technology • Transportation • E-mobility

10,000+ employees

🚀 Aerospace

⚡ Energy

💰 Post-IPO Debt on 2023-01

📋 Description

• Design, develop, implement, and optimize advanced correlation rules, use cases, and detection logic within the enterprise SIEM platform. • Architect and maintain robust log ingestion pipelines from diverse security and IT systems, ensuring comprehensive data collection, normalization, and parsing. • Develop and refine high-fidelity security alerts, dashboards, and reports to enhance threat identification, reduce false positives, and provide actionable insights. • Collaborate closely with the Security Operations Center (SOC) to optimize response workflows, improve threat detection capabilities, and provide expert-level support during security incidents. • Maintain expertise in emerging threats, attack techniques, and security best practices. Proactively hunt for advanced threats and develop new detection methods based on threat intelligence and adversary tactics, techniques, and procedures (TTPs). • Automate SIEM tasks, workflows, and integrations using scripting languages (e.g., Python, PowerShell) to improve efficiency and scalability. • Develop and maintain comprehensive SIEM documentation, including system architecture diagrams, data flow diagrams, log source configurations, alert rationale, and incident response procedures. • Contribute to the long-term vision and roadmap for SIEM and threat detection capabilities. Identify gaps and opportunities for improvement in existing detection strategies and recommend solutions. • Effectively communicate technical concepts to both technical and non-technical audiences. Interface with other IT teams (network, systems, application development, etc.) to ensure security is integrated throughout the infrastructure. • Collaborate with leadership on strategic planning, budget forecasting, and resource allocation for SIEM-related initiatives.

🎯 Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience. • Minimum of 5-7 years of experience in information security, with a strong focus on SIEM administration, engineering, and security operations. • Experience with Devo, Devo SOAR, and/or LogicHub • Advanced programming/coding in one or more languages (C#, Python, etc). • Understanding of security concepts, including network security, endpoint security, intrusion detection/prevention systems (IDS/IPS), firewalls, and vulnerability management.