NG-SIEM Threat Detection Engineer

Client requires a Senior Security Engineer to support a large information security program in the software services industry with deep engineering and implementation knowledge of CrowdStrike Next Generation Security Information and Event Management (NG-SIEM) system for detection engineering. Implementation will consist of log ingestion onboarding support and threat detection rule engineering and testing for 7 major business units IT environments. Key Responsibilities: Take solution architecture control designs and create system engineering diagrams for deployment to cloud NG-SIEM platform for log integrations support for Endpoints (CrowdStrike Falcon), IAM (AD, Entra ID, Okta, Ping, Windows Event Logs, etc.), Network and Web Security (Firewalls [cloud and on-premise], Zero Trust Network Access (ZTNA – e.g., Zscaler), Email Security (e.g., MS Exchange, Mimecast, Abnormal Security, ProofPoint, etc.), and Productivity tools (e.g., AWS, GCP, O365, etc.) Define implementation configurations for deployment to NG-SIEM Develop change control, implementation and backout plans Automate via Infrastructure as Code (IaC) tools and implement threat detection engineering pipelines and SOAR for the NG-SIEM for development, testing, migration to production with change control and post production fine tuning Assist with implementation of metrics reporting and automation as well as documenting procedures for continued operation/maintenance Assist with integrations into NG-SIEM tool