Assist in the deployment, configuration, and maintenance of Exabeam SIEM solutions to monitor and analyze security events in both IT and OT environments.
Monitor Exabeam alerts and logs to identify potential security threats, anomalies, and operational issues across IT and OT infrastructure.
Triage and investigate security incidents escalated by Level 1 analysts, providing initial analysis and support to determine the nature and severity of the incidents.
Collaborate with IT and OT teams to gather additional context and telemetry data for incident investigation and response.
Escalate complex or high-priority security incidents to Level 3 resources for further analysis and resolution.
Assist in the customization and tuning of Exabeam rules, alerts, and dashboards to improve detection accuracy and reduce false positives.
Participate in regular assessments and audits of Exabeam configurations and policies to ensure compliance with security standards and best practices.
Document incident response procedures, findings, and recommendations for the continuous improvement of IT and OT security operations.
Requirements
Bachelor’s degree in computer science, Information Technology, Cybersecurity, or related field, or equivalent work experience.
2-5 years of prior relevant experience working with Exabeam SIEM platform, or an overall 5 to 10 years of experience.
Basic understanding of IT and OT systems, networks, and protocols.
Strong analytical skills with the ability to analyze and interpret security event data.
Excellent communication and interpersonal skills, with the ability to work effectively in a team environment.
Eagerness to learn and develop skills in cybersecurity and IT/OT security operations.
Relevant certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP) are desirable but not mandatory.
Ability to work in a fast-paced environment and adapt to changing priorities and requirements.