SOS International LLC (SOSi) is seeking a SIEM Content Developer/Detection Engineer to join our team in Wiesbaden, Germany. Create analytics to alert intrusion detection analysts using device audit and network log data. Build dashboards, reports, charts, and saved searches to increase efficiency of cyber defense workloads with specific emphasis on network operations and cyber warfare tactics, techniques, and procedures for DoD information networks. Analyze host and network events to determine the best way to address Mitre Attack correlations to determine adversary capability, and develop analytics based on indicators of compromise to leverage the SIEM. Coordinate the signature updates for various NIDS and HIDS solutions. Drive the tuning of analytic platforms to improve efficiencies in detection of anomalies and malicious events. Prepare reports on current analytics based from the capabilities of the detection rates. Develop and maintain analytical procedures to meet changing requirements and ensure maximum operations.
SOSi is an equal employment opportunity employer and affirmative action employer. All interested individuals will receive consideration and will not be discriminated against on the basis of race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity, genetic information, or protected veteran status. SOSi takes affirmative action in support of its policy to advance diversity and inclusion of individuals who are minorities, women, protected veterans, and individuals with disabilities.
Software Powered by iCIMS