Next-Gen SIEM/XDR Architect
Lead the integration of AI security agents with existing SIEM, SOAR, and XDR systems and data platforms, ensuring seamless connectivity and data transformation.
Collaborate with security operations teams to gather requirements and ensure AI agents can effectively utilize security data.
Design and implement scalable and high-performance data transformation processes to optimize AI agent... functionality.
Develop and maintain data feeds compatible with frameworks like MITRE ATT&CK to enhance threat intelligence.
Build and organize security information platforms to support the deployment and operation of AI security agents.
Build and integrate security content to be leveraged by AI security agents
Extensive experience in developing and integrating SIEM and XDR systems, with hands-on knowledge of products such as IBM QRadar, Splunk, Microsoft Sentinel, Palo Alto Cortex XSOAR/XSIAM, Crowdstrike Falcon, etc.
Experience with formats leveraged in security operations such as ECS, CIM, OCSF, Sigma, STIX/TAXII, etc.
Strong background in threat intelligence, detection engineering, and cybersecurity analytics.
Proficiency in programming with Python and experience with cloud platforms, particularly AWS.
Proven track record of working closely with security operations centers, threat intelligence teams, and incident response processes.
Familiarity with machine learning and AI techniques as applied to cybersecurity.
Willingness to work with clients as necessary
Apply Now
Collaborate with security operations teams to gather requirements and ensure AI agents can effectively utilize security data.
Design and implement scalable and high-performance data transformation processes to optimize AI agent... functionality.
Develop and maintain data feeds compatible with frameworks like MITRE ATT&CK to enhance threat intelligence.
Build and organize security information platforms to support the deployment and operation of AI security agents.
Build and integrate security content to be leveraged by AI security agents
Extensive experience in developing and integrating SIEM and XDR systems, with hands-on knowledge of products such as IBM QRadar, Splunk, Microsoft Sentinel, Palo Alto Cortex XSOAR/XSIAM, Crowdstrike Falcon, etc.
Experience with formats leveraged in security operations such as ECS, CIM, OCSF, Sigma, STIX/TAXII, etc.
Strong background in threat intelligence, detection engineering, and cybersecurity analytics.
Proficiency in programming with Python and experience with cloud platforms, particularly AWS.
Proven track record of working closely with security operations centers, threat intelligence teams, and incident response processes.
Familiarity with machine learning and AI techniques as applied to cybersecurity.
Willingness to work with clients as necessary
Apply Now