SIEM Engineer with Sumo Logic - SGA Inc.
Auburn Hills, MI
About the Job
Software Guidance & Assistance, Inc., (SGA), is searching for a SIEM Engineer with Sumo Logic for a CONTRACT assignment with one of our premier Banking clients in Auburn Hills, MI or Frisco, TX .
Hybrid schedule 2x weekly onsite
Responsibilities :
Preferred Skills :
SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at https://sgainc.com/ .
SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company EEO page to request an accommodation or assistance regarding our policy.
Hybrid schedule 2x weekly onsite
Responsibilities :
- Responsible for designing, implementing, and managing SIEM solutions to collect, analyze, and visualize data from various sources within government agencies.
- Monitor incoming event queues using security management tools.
- Identify, categorize, prioritize, and investigate correlated events.
- Perform investigation and triage of events and incidents and escalate according to SOPs.
- Monitor/and work ticket queue for events and incidents.
- Maintain shift logs with relevant activity.
- Document investigation results and provide relevant details for final analysis.
- Develop reports, dashboards, real-time rules, filters, and active channels, etc.
- Provide event/incident procedure, long-term analysis, and investigation into NGA network activity and provide investigation reports.
- Provide content development to include reports, dashboards, real-time rules, filters and active channels.
- Configure SIEM tool performance and event data quality to maximize SIEM system efficiency.
- Assist NGA cyber security teams with device event correlation.
- Develop and institute standard procedures for the "front-end operation of the SIEM system as directed by the government.
- Assist Network Analysts with the development of rules, filter, active channels, and onboarding of new programs.
- Experience with SUMO Logic.
- Ability to work cross functionally across the enterprise.
- Excellent communication skills.
Preferred Skills :
- Prior banking / financial services
SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at https://sgainc.com/ .
SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company EEO page to request an accommodation or assistance regarding our policy.
Source : SGA Inc.