SIEM Detection Engineer - Toronto, ON, Canada - Insight Global

Description

Insight Global SIEM Detection Engineer in Toronto , Ontario

Job Description

Insight Global is looking for a SIEM Detection Engineer. This candidate must have strong experience with MS Defender, and servers. This individual will participate in day to day BAU activities as well as take point for Detection Engineering for this project. As the primary Detection Engineer representative on this project, they will identify, assess and analyze the relevant threat surfaces, and available logging data.

Once that has been performed, they will determine which Tactics, Techniques and Procedures are most relevant to the creation of effective detection coverage. They will also, where feasible, make recommendations to other groups on effective mitigations and controls where detections are not the optimal solution to a particular risk.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to .

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: .

Skills and Requirements

• 7+ years of experience working within Information Security

-5+ years of experience with a SIEM environment

-MS (Microsoft) Defender for Endpoint security deployed for servers

-Linux Redhat and Windows Servers, experience deploying and securing

-Building detection content for the SIEM environment

-Ability to give feedback on infrastructure and architecture roadblocks and make recommendations on how to mitigate risk Plusses:

-Microsoft Sentinel

-Trend Micro Deep Security

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to