Cybersecurity Engineer, SIEM/SOAR, Global

Remote - VA

Vantage Data Centers

View company page

About Vantage Data Centers

Vantage is committed to being a workplace of inclusion, equity, respect and acceptance. We celebrate diversity and intentionally seek out opportunities to learn from one another’s experience.

Vantage Data Centers powers, cools, protects and connects the technology of the world’s well-known hyperscalers, cloud providers and large enterprises. Developing and operating across North America, EMEA and Asia Pacific, Vantage has evolved data center design in innovative ways to deliver dramatic gains in reliability, efficiency and sustainability in flexible environments that can scale as quickly as the market demands.

Security Department

The Vantage Global Security (VGS) Department for Vantage Data Centers is very hands on. In most cases, we specify, purchase, configure and maintain all networking and server hardware. We also work closely with partner Value Added Resellers (VARs) to learn about the latest technological changes so that we can make informed purchase decisions. We are always looking for ways to strike the best balance between technology, performance, and cost. Vantage Security Department also participates in designing each of our new data center building’s security infrastructure. If you like getting your hands dirty and helping to design, build and maintain Security infrastructure in a modern data center, then come work at Vantage. We’re expanding with many new builds!

Essential Job Functions

  • Experience with configuring and handling Elastic SIEM

  • Experience with configuring and running Swimlane/Turbine and automation of ticket creation

  • Keep up to date with the latest cybersecurity threats, vulnerabilities, and industry trends.

  • Update, manage and tune the SIEM solution to collect, analyze, and correlate security event data.

  • Design, configure, and manage the SOAR to aggregate data and automate actions, escalate incidents and generate alerts and reports on the status of the environment

  • Monitor and analyze security events, incidents, and alerts to identify potential threats and vulnerabilities.

  • Create playbooks and procedures to analyze and action SIEM and SOAR incidents.

  • Assist with designing and documenting work processes within the SOC.

  • Support SOC automation initiatives leveraging playbooks

  • Add /Remove log sources. Troubleshoot issues with log sources or systems with the vendor, and report system defects as needed.

  • Actively engage in security projects across the business to implement event and logging requirements.

  • Create rules for compliance and audit requirements and create and manage Watch Lists for current threats

  • Create technical documentation around the content deployed to the SIEM and SOAR

  • Collaborate with cross-functional teams to develop and maintain incident response plans and procedures.

  • Ensure the SIEM and SOAR system's performance, availability, and scalability.

  • Engineer SIEM solutions to support threat intelligence, detection engineering, threat hunting, adversary emulation, and response efforts.

  • Curate and develop security-focused analytical content that incorporates business impact and likelihood and criticality on regular basis or for ad hoc reports

  • Collaborate with other VDC departments regarding security issues, vulnerabilities and threats and remediation and notification.

  • Support incident response and remediation

  • Focus on automation opportunities

  • Generate automated reports on a schedule or ad hoc for VDC Audits, KPIs, and status updates

  • Hands-on troubleshooting and repair as needed.

  • Document all critical evolutions, lessons learned, and find possible efficiency gains in processes

  • Respond as needed when system maintenance or complications arise

  • Other duties may be assigned from time-to-time by management

Job Requirements

  • Associate of Science degree, or equivalent experience, in Information Technology or a combination of education and work experience.

  • 3+ years of experience with SIEM and SOAR Management

  • Experience designing and integrating applications and log sources into a SIEM

  • Experience in designing and handling a SOAR solution.

  • Project management experience leading large scale projects with multiple deadlines and stakeholders

  • Strong computer skills including proficiency with Microsoft desktop and server operating systems, as well as Microsoft Office 365

  • Working knowledge of networking concepts (IP addresses, MAC addresses)

  • Experience with Elastic is strongly preferred

  • Data Center experience is strongly preferred, but not required

  • Able to plan, organize, and prioritize workload to meet deadlines

  • Strong communication skills (verbal and written) with the ability to communicate internally with team members as well as externally with vendors and other service providers.

  • Travel is expected to be less than 20%

We operate with No Ego and No Arrogance. We work to build each other up and support one another, appreciating each other’s strengths and respecting each other’s weaknesses. We find joy in our work and each other, actively seeking opportunities to inject fun into what we do. Our hard and efficient work is rewarded with an above market total compensation package. We offer a comprehensive suite of health and welfare, retirement, and paid leave benefits exceeding local expectations.

Throughout the year, the advantage of being part of the Vantage team is evident with an array of benefits, recognition, training and development, and the knowledge that your contribution adds value to the company and our community.

Don't meet all the requirements? Please still apply if you think you are the right person for the position. We are always keen to speak to people who connect with our mission and values.

Vantage Data Centers is an Equal Opportunity Employer

Vantage Data Centers does not accept unsolicited resumes from search firm agencies. Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired; such resumes will be deemed the sole property of Vantage Data Centers.

Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Audits Automation Cloud Compliance Incident response KPIs SIEM SOAR SOC Threat intelligence Vulnerabilities

Perks/benefits: Equity Flex hours Health care Team events

Region: Remote/Anywhere
Job stats:  23  10  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.