Sr. Security Visualization Engineer

Job Description

• As a member of the Wireless Security Engineering team, you will work in a fast-paced environment focused on development of visualization of security risks of the 5g critical systems.
• You will interact with security engineers of 5G network and back end systems, Your deliverables should account for all security domain considerations (e. g., application security, IAM, network/asset/data security, testing, and operations).
• We are looking for a Sr. Security Visualization Engineer who will be responsible for setting up security event detection and threat analysis for escalation to Security Operations Center.
• Design process for consumption and visualization of security logs from vendor systems, Splunk/kibana/csv files into a central ELK platform
• Data representation breaking down complex, large datasets to meaningful information
• Configure & Automate various MIS reports to track & monitor errors, vulnerability findings in various application/systems logs
• Work with Security Engineers in developing use cases for visualization
• Develop data models to support the visualization
• Validate log sources and indexed data, search through indexed data to optimize search criteria.
• Add Customer Context, eliminate noise and false positives, and develop trend
• Create custom alert schema, reports, and custom dashboards.
• Design process for transfer of critical security logs to Security Operations Center, and ensure connectivity for log transfer

• Familiarity with server-side scripting
• Drive deployments of ELK platform dashboards and reports while working side by side with the customers to solve their unique problems across a variety of use cases
• Assist internal users of ELK platform in designing and maintaining production-quality dashboards.
• Experience in design, implementation, and support of ELK platform (Indexers, Forwarders, Search-Heads Setup etc.)
• Experience with implementing and administering ELK platform
• Good understanding with virtualization technologies (Hypervisor, VMware, etc.)
• Apps/Dashboards for license usage and Application errors.
• Experience with Linux and Windows agents for ELK platform administration with a solid understanding of the ELK system.
• Ability to create operations documentation for maintaining the ELK platform.
• Setting up ELK Forwarding for new application tiers introduced into the environment.
• Identifying bad searches/dashboards and partnering with the creators to improve performance.
• Troubleshooting ELK platform performance issues
• Monitor the ELK infrastructure for capacity planning and optimization.
• Troubleshoot log feeds, field extractions, search time, etc.
• Provide Granular, Role-based Security.
• Restrict access to sensitive logs/data
• Experience in onboarding new data, inputting new information, Creating new dashboards, Extraction info through ELK
• Report generation and customization

• Bachelor's Degree in Computer Science or Engineering or equivalent experience.
• Five to seven years of relevant experience

• ELK Admin Certification
• Experience with databases.