Telus Security Consultant II (SIEM - LogRhythm) in Canada
Ready. Set. Go.
As a Managed SIEM Engineer, YOU will build your skills and experience supporting and administrating TELUS Managed Security Information and Event Management (SIEM) solutions, based on HP ArcSight, LogRhythm and Splunk.
Administer and support TELUS Managed security information and event management (SIEM) solution, including log collection platform and event correlation rule development
Advanced content development for the creation of use cases, including Active Channels, Rules, Filters, Trends, Dashboards, Alerts and Reports
Provide investigative assistance such as log evidence collection and report generation
Maintain the SIEM components (Collectors, Loggers/Log Managers, DB, ESM/Event management)
Create system performance metrics and trending for capacity planning
Meet availability and update requirements
Adhere to enterprise change management procedures
Maintain documentation for all systems and create user guides
Asset modeling provisioning
Provide Tier 3 customer support
Establish and maintain a close working relationship with TELUS Managed customers, as well as, with TELUS supporting team such as: Tier 1/Service Desk, Tier 2, SOC to ensure delivery of service
Must have robust SIEM administration knowledge, to proactively manage, upgrade, and improve our managed SIEM service
Good knowledge of Structured Query Language (SQL) or other relational languages
Boolean logic for rule development
Familiarity with SIEM deployment challenges and troubleshooting processes
Required Skills & Abilities:
Strong oral and written communications skills
Expert-level skills with SIEM technologies (ex: ESM, management consoles, trends, and reporting)
Strong skills in the security industry in general (working with IPS, IDS, AV, Vulnerability Management solutions, OS devices)
Ability to build relationships, build consensus, negotiate solutions, and provide assistance to customers through their decision process are highly desirable
Required Professional Designation/Certification:
Capable of obtaining a Level II security clearance (GoC Public Works, secret level)
SIEM administration certificate and developer training (ArcSight, Splunk, LogRhythm)
Industry recognized security designations such as SANS GIAC, CISSP, etc
3 years of experience delivering systems administration/engineering support, to include specific experiences with SIEM management (i.e. Enterprise Security Manager (ESM)/Event Management, Appliances, Logger, Collectors & Smart Connectors)
Working experience with Linux and Windows operating systems, knowledge of virtual environments
Proficiency on SIEM use cases for Dashboards, Active Channels, Reports, Rules, Filters, Trends, and Active Lists
Experience working several projects at one time
Experience working with very demanding customers and ability to provide on-call support
Who is TELUS?
We're a high-performing team of individuals who collectively make TELUS one of the leading telecommunications companies in Canada. Our competitive consumer offerings include wireline, wireless, internet and Optik TV™. We also deliver a compelling range of products and services for small, medium and large businesses; and have carved out a leadership position in the health, energy, finance and public sector markets with innovative industry specific solutions.
The TELUS team is as diverse as the society we live in and the customers we serve. We're also passionate about creating success for our customers, our shareholders, our communities and our team. And we do so by living theTELUS valuesand delivering on ourCustomers First commitments.
Do you share our passion?
At TELUS,youcreate future friendly® possibilities.
At TELUS, we are committed to diversity and equitable access to employment opportunities based on ability.
Title: Security Consultant II (SIEM - LogRhythm)
Requisition ID: ROL02588-16