Security Information and Event Management Engineer - Singapur, Singapore - Amaris Consulting

Description

Job description Key Responsibilities:

1. Design, set up, migrate, and maintain Microsoft Sentinel Data Connectors and Analytics Rules.
2. Migrate SPL Queries from Splunk to Microsoft Sentinel, ensuring seamless transition and functionality.
3. Implement and maintain Syslog Forwarders across various platforms.
4. Deploy and configure Azure Monitoring Agent (AMA) for optimal performance and security.
5. Manage EntraID and Azure Resources for Identity and Access Management, ensuring robust security protocols.
6. Plan, request, and troubleshoot network communications, working closely with technical teams for resolution.
7. Perform system administration tasks for Windows and Linux environments, ensuring systems are secure and up-to-date.
8. Liaise with other technical teams to manage configuration and access requests, ensuring compliance with security standards.

Desired Qualifications:

1. Bachelor's or Master's degree in Information Security, Computer Science, or Telecommunication.
2. Minimum of 2 years of hands-on experience in designing and implementing Microsoft Sentinel solutions.
3. At least 1 year of experience in Splunk design and implementation.
4.Strong knowledge of Microsoft Azure Identity and Access Management tools (EntraID, Azure Resource RBAC, Azure Lighthouse).
5. Solid technical background in system and network administration.
6. Comprehensive understanding of Security Operations Center (SOC) processes and requirements.
7. Relevant certifications, such as Microsoft SC-200: Microsoft Security Operations Analyst, Splunk Enterprise Certified Admin, or similar certificates.