Deep understanding of cloud computing principles, including virtualization, containerization, microservices, and serverless computing;
Risk Management, RHCOS security, container security, Kubernetes security, IAM security, network security, auditing, encryption, secrets management and data protection, securing CI/CD
Design & deployment of Vector.dev unified log aggregation platform
Enabling and configuring SIEM data connectors vector.dev, fluentd, Microsoft Sentinel.
Identification and documentation of log source volume and data types ingested
Recommended modifications to existing data sources to optimize data ingestion costs and security relevance/importance of log data being ingested.
Architectural documentation displaying all log source connector inputs to SIEM.
Expertise in requirements engineering, data architecture, testing, and solution deployments including understanding how systems interact with technical architectures.
Able to make data to easily publish and share data with other applications and data architects design database systems.
Experience with Infrastructure as code (IaC) tools, Terraform, CloudFormation …
Proficiency in Python, Go, or Java
Experience in DevOps and agile methodologies and automated solution delivery and testing through CI/Cd pipelines
Advances knowledge of Identity Security concepts, least-privilege, separation of duties, and Zero trust design principals
10+ years of experience in Information security with 5+ years of experience in Security Log Aggregation, SIEM/SOAR
Ability to work independently and collaboratively in a fast-paced, agile environment