SIEM Specialist

3 weeks ago


Old Toronto, Canada Tundra Technical Solutions Inc. Full time
SIEM Specialist

The SIEM Specialist will support the work to onboard additional log sources in to the Client’s vendor managed Security Information Event Management (SIEM) platforms (Splunk and Sentinel), as well as support the development of new use cases, and troubleshooting existing use cases. This position will support the Manager of Cyber Defense.

The SIEM specialist will also provide advice and support and will act as a subject matter expert in implementing, modifying, and troubleshooting SIEM log parsing, log ingestion, and use case/report creation in both Splunk and Sentinel SIEM solutions.

The client expects the candidate to have demonstrated experience in implementing, deploying, configuring, modifying, and troubleshooting SIEM solutions, including heavy forwarders, indexers and search heads, as well as demonstrated experience in creating/modifying use cases within SIEM solutions. While not a requirement, certifications related to trending industry SIEM technologies such as Splunk, IBM QRadar, LogRhythm or Microsoft Sentinel will garner strong consideration.

Assignment Duties

  • Responsible for the hands-on configuration of the City’s SIEM solutions (Splunk and Sentinel) in on-boarding additional log sources.
  • Responsible for providing advice, guidance and support related to SIEM technology and for the implementation, configuration, and support of SIEM use cases, agents, forwarders, indexers and management components.
  • Responsible for providing advice, guidance and support related to SIEM technology and the implementation, configuration, and support of SIEM use cases and logging requirements.
  • Working with internal and external clients to provide them advice and guidance in configuring their applications so they can be onboarded to a SIEM platform (Splunk or Sentinel).
  • Communicate SIEM requirements through functional and technical design documents as required.
  • Collaborate with vendor partners and staff on the assignment duties. Participate in planning/troubleshooting sessions.

Experience And Qualifications

  • A minimum of 5 years’ experience in configuring SIEM and SIEM components.
  • Demonstrated experience in maintaining and managing SIEM solution(s) and respective components.
  • Expert knowledge of Cybersecurity practices demonstrated through certifications (while not required, certifications specifically related to SIEM technology will garner strong consideration).
  • Demonstrated experience with the configuration and deployment of SIEM solutions
  • Demonstrated experience with SIEM use case development and configuration
  • Excellent collaboration skills
  • Excellent problem-solving skills.
  • Possesses broad knowledge of SIEM technical architecture and best practices related to SIEM log ingestion, configuration and deployment in an enterprise environment.
  • Bachelor's Degree in Information Technology, Computer Science, Computer Engineering, or equivalent is an asset.

Job 70604

#J-18808-Ljbffr
  • SIEM Specialist

    3 weeks ago


    Toronto, ON, Canada Tundra Technical Solutions Inc. Full time

    SIEM Specialist The SIEM Specialist will support the work to onboard additional log sources in to the Client’s vendor managed Security Information Event Management (SIEM) platforms (Splunk and Sentinel), as well as support the development of new use cases, and troubleshooting existing use cases. This position will support the Manager of Cyber Defense. ...


  • Old Toronto, Canada CDW - Canada Full time

    The Consultant performs ongoing client support for complex technical performance issues and develops recommendations to ensure adherence to service level agreements and customer service excellence. The Consultant may specialize in a particular discipline and continues to develop a platform of technical expertise, acts as a Subject Matter Expert. In addition,...


  • Toronto, Canada CDW Full time

    The Consultant performs ongoing client support for complex technical performance issues and develops recommendations to ensure adherence to service level agreements and customer service excellence. The Consultant may specialize in a particular discipline and continues to develop a platform of technical expertise, acts as a Subject Matter Expert. In...


  • Toronto, Canada CDW Full time

    The Consultant performs ongoing client support for complex technical performance issues and develops recommendations to ensure adherence to service level agreements and customer service excellence. The Consultant may specialize in a particular discipline and continues to develop a platform of technical expertise, acts as a Subject Matter Expert.In...


  • Toronto, Canada CDW Full time

    The Consultant performs ongoing client support for complex technical performance issues and develops recommendations to ensure adherence to service level agreements and customer service excellence. The Consultant may specialize in a particular discipline and continues to develop a platform of technical expertise, acts as a Subject Matter Expert.In...


  • Old Toronto, Canada Hamilton Barnes Associates Limited Full time

    A leading Canadian financial organisation is seeking an experienced Cyber Security Specialist to lead the internal security operations, and vulnerability management and assist with governance activities.The ideal candidate will have extensive experience with various security tools including SIEM, EDR, Firewalls, IDS, IPS, IAM and Cloud Security.You will also...


  • Old Toronto, Canada Hamilton Barnes Associates Limited Full time

    A leading Canadian financial organisation is seeking an experienced Cyber Security Specialist to lead the internal security operations, and vulnerability management and assist with governance activities.The ideal candidate will have extensive experience with various security tools including SIEM, EDR, Firewalls, IDS, IPS, IAM and Cloud Security.You will also...


  • Old Toronto, Canada Hamilton Barnes Associates Limited Full time

    A leading Canadian financial organisation is seeking an experienced Cyber Security Specialist to lead the internal security operations, and vulnerability management and assist with governance activities.The ideal candidate will have extensive experience with various security tools including SIEM, EDR, Firewalls, IDS, IPS, IAM and Cloud Security.You will also...


  • Old Toronto, Canada Hamilton Barnes Associates Limited Full time

    A leading Canadian financial organisation is seeking an experienced Cyber Security Specialist to lead the internal security operations, and vulnerability management and assist with governance activities.The ideal candidate will have extensive experience with various security tools including SIEM, EDR, Firewalls, IDS, IPS, IAM and Cloud Security.You will also...


  • Old Toronto, Canada Hamilton Barnes Associates Limited Full time

    A leading Canadian financial organisation is seeking an experienced Cyber Security Specialist to lead the internal security operations, and vulnerability management and assist with governance activities.The ideal candidate will have extensive experience with various security tools including SIEM, EDR, Firewalls, IDS, IPS, IAM and Cloud Security.You will also...


  • Toronto, Canada CDW Full time

    Technology never sleeps and neither do we. At CDW, we're always on, forever vigilant and information security is infused in our DNA. Our System Specialist - Security career puts you on the front-line of defense, the cutting-edge of innovation and plays a crucial role within the CDW Security Operations Center. The System Specialist - Security will be...


  • Toronto, Canada Maplesoft Group Full time

    Maplesoft Group is currently seeking a Cyber Security Specialist for our private sector client. The following responsibilities are associated with the “Statement of Work” but are not limited to: Primary Responsibilities - Administer and maintain security systems and infrastructure (e.g., firewalls, VPNs, vulnerability scanning tools, web proxies, SIEMs,...


  • Toronto, ON, Canada Tundra Technical Solutions Inc. Full time

    Cyber Defence Incident Response Specialist Description Of Assignment The Specialist will support the Office of the CISO division in the delivery of monitoring, threat hunting, and incident response activities, as well as assisting with handling incident tickets in the threat management incident ticket queue. The Specialist will provide expertise in the...


  • Toronto, Canada Vistex Technologies Canada Full time

    Vistex is looking for The **IT Security Specialist. **Vistex’s **IT Security Specialist** reports to the IT Security Manager and is responsible for security incident management operations at Vistex in accordance with Vistex IS policies and standards. **Essential Duties and Responsibilities**: - Acts as a representative and contact point for IT Security...


  • Toronto, Canada CGI Full time

    Position Description: The Global Security (GS) organization of which the Global Security Operation Center (GSOC) is part, is responsible for the protection and defense of CGI members, assets and data using logging, monitoring, SIEM/SOAR, endpoint security and other advanced on-prem and cloud technologies. As a member of the GSOC team, the Cloud...


  • Toronto, Canada CDW Full time

    Forsythe Technology is a CDW company. We share common values as a performance-driven, customer-focused culture. CDW is a leading multi-brand provider of information technology solutions to business, government, education and healthcare customers across the globe. **_ This role will support our Mississauga, Ontario area Security Operations Centre, and will...


  • Toronto, Canada CGI Full time

    The Global Security (GS) organization of which the Global Security Operation Center (GSOC) is part, is responsible for the protection and defense of CGI members, assets and data using logging, monitoring, SIEM/SOAR, endpoint security and other advanced on-prem and cloud technologies. As a member of the GSOC team, the Cloud Application Support Specialist...


  • Old Toronto, Canada IAMConcepts Security Solutions Inc Full time

    IAMConcepts Security Solutions Inc. is a leading company in Cybersecurity, specifically Enterprise Identity & Access Management (IAM). We are the preferred North American Identity and Access Management Service provider with over 100+ customers, leveraging the top tier strategic partners and vendors.RoleWe are now hiringIAM CyberArk Security...


  • Old Toronto, Canada IAMConcepts Security Solutions Inc Full time

    IAMConcepts Security Solutions Inc. is a leading company in Cybersecurity, specifically Enterprise Identity & Access Management (IAM). We are the preferred North American Identity and Access Management Service provider with over 100+ customers, leveraging the top tier strategic partners and vendors.RoleWe are now hiringIAM CyberArk Security...


  • Old Toronto, Canada IAMConcepts Security Solutions Inc Full time

    IAMConcepts Security Solutions Inc. is a leading company in Cybersecurity, specifically Enterprise Identity & Access Management (IAM). We are the preferred North American Identity and Access Management Service provider with over 100+ customers, leveraging the top tier strategic partners and vendors.RoleWe are now hiringIAM CyberArk Security...