Telus Security Consultant II (SIEM - LogRhythm) in Canada

Ready. Set. Go.

As a Managed SIEM Engineer, YOU will build your skills and experience supporting and administrating TELUS Managed Security Information and Event Management (SIEM) solutions, based on HP ArcSight, LogRhythm and Splunk.

Responsibilities:

  • Administer and support TELUS Managed security information and event management (SIEM) solution, including log collection platform and event correlation rule development

  • Advanced content development for the creation of use cases, including Active Channels, Rules, Filters, Trends, Dashboards, Alerts and Reports

  • Provide investigative assistance such as log evidence collection and report generation

  • Maintain the SIEM components (Collectors, Loggers/Log Managers, DB, ESM/Event management)

  • Create system performance metrics and trending for capacity planning

  • Meet availability and update requirements

  • Adhere to enterprise change management procedures

  • Maintain documentation for all systems and create user guides

  • Asset modeling provisioning

  • Provide Tier 3 customer support

  • Establish and maintain a close working relationship with TELUS Managed customers, as well as, with TELUS supporting team such as: Tier 1/Service Desk, Tier 2, SOC to ensure delivery of service

Required Knowledge:

  • Must have robust SIEM administration knowledge, to proactively manage, upgrade, and improve our managed SIEM service

  • Good knowledge of Structured Query Language (SQL) or other relational languages

  • Boolean logic for rule development

  • Familiarity with SIEM deployment challenges and troubleshooting processes

Required Skills & Abilities:

  • Strong oral and written communications skills

  • Expert-level skills with SIEM technologies (ex: ESM, management consoles, trends, and reporting)

  • Strong skills in the security industry in general (working with IPS, IDS, AV, Vulnerability Management solutions, OS devices)

  • Ability to build relationships, build consensus, negotiate solutions, and provide assistance to customers through their decision process are highly desirable

Required Professional Designation/Certification:

  • Capable of obtaining a Level II security clearance (GoC Public Works, secret level)

  • SIEM administration certificate and developer training (ArcSight, Splunk, LogRhythm)

  • Post-secondary diploma/certification

  • Industry recognized security designations such as SANS GIAC, CISSP, etc

Required Experience:

  • 3 years of experience delivering systems administration/engineering support, to include specific experiences with SIEM management (i.e. Enterprise Security Manager (ESM)/Event Management, Appliances, Logger, Collectors & Smart Connectors)

  • Working experience with Linux and Windows operating systems, knowledge of virtual environments

  • Proficiency on SIEM use cases for Dashboards, Active Channels, Reports, Rules, Filters, Trends, and Active Lists

  • Experience working several projects at one time

  • Experience working with very demanding customers and ability to provide on-call support

Who is TELUS?

We're a high-performing team of individuals who collectively make TELUS one of the leading telecommunications companies in Canada. Our competitive consumer offerings include wireline, wireless, internet and Optik TV™. We also deliver a compelling range of products and services for small, medium and large businesses; and have carved out a leadership position in the health, energy, finance and public sector markets with innovative industry specific solutions.

The TELUS team is as diverse as the society we live in and the customers we serve. We're also passionate about creating success for our customers, our shareholders, our communities and our team. And we do so by living theTELUS valuesand delivering on ourCustomers First commitments.

Do you share our passion?

At TELUS,youcreate future friendly® possibilities.

At TELUS, we are committed to diversity and equitable access to employment opportunities based on ability.

*LI-MT1

Title: Security Consultant II (SIEM - LogRhythm)

Location: Canada

Requisition ID: ROL02588-16