Global Payments Inc. is a company focused on providing payment technology solutions, and they are seeking a SIEM Engineer to manage and optimize their Security Information and Event Management system. The role involves creating and maintaining security alerts, collaborating with the Security Automation Team, and ensuring compliance with security standards and practices.
Build and maintain security alert content: Design, create, and manage effective alert content within the SIEM platform to identify potential security incidents, ensuring high-quality, accurate detection of threats across the network and systems.
Maintain the SIEM environment: Oversee the day-to-day operations of the SIEM system, ensuring it runs smoothly, troubleshooting and resolving issues to maintain optimal performance and security.
Keep up to date with knowledge of emerging threats: Continuously monitor the cybersecurity landscape for emerging threats, vulnerabilities, and attack techniques to update alerting rules and maintain the relevance of security detection.
Work with Risk-Based Alerting (RBA): Implement and fine-tune risk-based alerting strategies, ensuring that the SIEM platform effectively prioritizes alerts based on potential impact, minimizing noise and increasing the focus on critical threats.
Work directly with the Security Automation Team: Collaborate closely with the Security Automation Team to integrate automated processes for alert management, response, and remediation, enhancing efficiency and reducing the time to mitigate risks.
Build and maintain applicable documentation: Create and update detailed documentation for alerting configurations, processes, and procedures, ensuring transparency and consistency in security operations.
Participate in strategic planning and development of the SIEM environment: Contribute to the long-term vision and strategy for the SIEM platform, including capacity planning, scalability, and the implementation of new technologies or methodologies to improve security monitoring.
Integrate new data sources into the SIEM system: Identify, assess, and implement relevant data sources to enhance the SIEM’s detection capabilities, expanding visibility across diverse systems, applications, and network devices.
Collaborate with cross-functional teams: Work with security architects, incident response teams, and other stakeholders to align the SIEM environment with organizational security goals and ensure smooth collaboration during security incidents.
Ensure compliance with security standards and best practices: Regularly review and ensure that all alerting and SIEM configurations comply with internal security standards, industry best practices, and relevant regulatory requirements, maintaining the integrity of the security posture.
Qualification
Required
Bachelor's degree in Computer Science, Info Security, or related field. Or related work experience.
Typically Minimum 2 Years Relevant Exp
Experience with network operations or engineering or system administration on Unix, Linux, Mac, or Windows; proven experience working with security operations, Security Incident Event Management systems, and log collection.
SEC+ Certification
Preferred
Professional certifications Network +, eJPT, CISA, etc
Typically Minimum 3 Years Relevant Exp
Knowledge of industry standard security compliance programs (PCI(Payment Card Industry), SOX(Sarbanes-Oxley), GLBA(Gramm Leach Bliley Act))
Benefits
At Global Payments (NYSE : GPN), we empower simple, fast, secure payments for everyone.
Glassdoor
3.5
Founded in 1967
Atlanta, Georgia, USA
10001+ employees
https://www.globalpayments.com/
At Global Payments (NYSE : GPN), we empower simple, fast, secure payments for everyone.
