SIEM Administrator- Latam Remote

Job Description: SIEM Administrator
Company: Puzzle
Location: Remote (Latam)
Contract:  Full-Time About Puzzle:
Puzzle is a dynamic technology solutions provider dedicated to empowering businesses across diverse industries. Committed to innovation and client satisfaction, our team of experts strives to unlock the potential of technology for our valued clients. Job Summary:
We are seeking a highly skilled SIEM (Security Information and Event Management) Administrator with expertise in cloud security, specifically in Microsoft Sentinel and Defender, to join our dynamic team. The ideal candidate will be responsible for the administration, configuration, and optimization of our SIEM infrastructure to ensure effective monitoring, detection, and response to security incidents across our cloud environments. Responsibilities

• Administer, configure, and maintain the SIEM infrastructure, focusing on cloud security platforms such as Microsoft Sentinel and Defender.
• Collaborate with cross-functional teams to design, implement, and maintain security policies, rules, and alerts within the SIEM platform to align with organizational security requirements.
• Monitor SIEM alerts, investigate security incidents, and conduct root cause analysis to determine the scope and impact of threats.
• Develop and maintain documentation, procedures, and guidelines for SIEM configuration, operation, and incident response processes.
• Continuously assess and optimize SIEM performance, including tuning rules, queries, and correlation rules to improve detection accuracy and reduce false positives.
• Stay current with emerging threats, vulnerabilities, and industry best practices related to cloud security and SIEM technologies.
• Provide expertise and guidance to other members of the security team on SIEM-related matters, including troubleshooting and resolving complex issues.
• Participate in security incident response activities, including on-call rotation, to ensure timely and effective response to security events.

Requirements:

• Bachelor's degree in Computer Science, Information Security, or related field
• Minimum of 10 years of experience working in Cybersecurity and at least 3 years as an SIEM Administrator or similar role, with a focus on cloud security.
• Proven expertise in configuring and administering SIEM platforms, particularly Microsoft Sentinel and Defender.
• In-depth understanding of cloud security principles, technologies, and best practices, including experience with cloud service providers such as Azure or AWS.
• Strong knowledge of security incident response processes, including the ability to analyze, investigate, and remediate security incidents.
• Effective communication skills with the ability to convey technical concepts to both technical and non-technical stakeholders.
• Strong teamwork and collaboration skills, with the ability to work effectively in a fast-paced environment.

Additional Requirements:

• Highly skilled and accomplished IT security professional with expertise in cyber security, information security, and security operations center management.
• Certified Information Systems Security Professional (CISSP) and Certified Information Security Manager (CISM) certifications are required.
• Extensive experience in driving secure IT environments, including technical, operational, and strategic aspects.
• Current or previous role as a Senior Manager or equivalent position within an IT Security Operations Center, with demonstrated leadership in managing security teams and programs.
• Proficiency in managing SOC tools such as ARMIS, Microsoft Sentinel, Microsoft Defender, FireEye Helix, and FireEye HX.
• Hands-on experience with cloud computing, network security administration, incident management, threat hunting, penetration testing, vulnerability management, and endpoint security.
• Strong technical knowledge of technologies including Microsoft Azure, AWS, SIEM, firewalls, VPNs, IDS/IPS, and EDR solutions.
• Familiarity with cybersecurity frameworks such as MITRE, DIAMOND, and Cyber Kill Chain.
• Leadership skills in resource management, personnel development, and operational change management.
• Ability to establish strong relationships with stakeholders and drive governance, quality, and efficiency through metrics and KPIs.
• Experience handling cyber security incidents and audits, including compliance with HIPAA, PCI DSS, ISO27001, and NIST standards.

Check out the exciting perks that come with becoming a #Puzzler!

• Competitive salary: You’ll receive a USD salary that reflects your skills and experience, so you can focus on doing your best work.
• Time off to recharge: We believe in work-life balance, so we offer paid time off (PTO) so you can take the breaks you need to come back refreshed and ready to tackle any challenge.
• Your health matters to us: We know that taking care of your health is important, which is why we provide a health insurance subsidy to make it easier for you to get the care you need.
• A workspace that works for you: Whether you prefer a traditional office or a more flexible co-working space, we’ve got you covered with our co-working space subsidy. Choose the environment that works best for you, and watch your productivity soar!

• So what are you waiting for? Put your puzzle-solving skills to the test, and join our team today!
  Are you interested in knowing more about our company? Follow us on social media! LinkedIn: Puzzle
  Instagram: @puzzle.tech_