Trigyn Technologies, Inc. Jersey City , NJ 07097
Trigyn's direct financial client has a contract assignment (6 Months +) for a Security (Log Onboarding / Data Quality Review) Specialist in Jersey City, NJ. Candidate can also choose to work out of NY locations.
This position is for a core team member to supplement the firms growing cyber security monitoring function. The candidate will join a team currently responsible for:
Documenting differentiated log content quality standards (bronze, silver, gold, platinum content sets)
Influencing application and infrastructure teams to produce high quality logs for Security Monitoring purposes, and to deliver a copy of those logs to the Security Monitoring Program.
Providing internal customer-facing service to answer questions from application and infrastructure teams, and connect them with Splunk engineering resources for onboarding.
Ensuring the data quality of logs received by the Security Monitoring program by performing a prescriptive and rigorous log quality analysis.
Tracking, dashboarding, and reporting on log production, collection/delivery coverage, and quality.
Document field-level log content in Data Dictionaries per log source for use by SIEM Engineers and SOC Analysts as an Information-Model enabler.
Creating and maintaining documentation for log onboarding and data quality review processes.
Leveraging existing technologies within the organization to expand the scope of coverage of the log onboarding review team.
Responsibilities (including but not limited to):
Ensures security logs are generated, collected, correlated, and monitored.
Runs log quality review processes, including:
querying Splunk SIEM to identify garbage data, badly parsed logs, or possible misconfigurations in log reporting.
Reviewing available logs to confirm there are adequate quantities and content to usefully provide Security Monitoring.
Development of Data Dictionaries for log sources to confirm which fields and values are needed or useful for Security Monitoring.
Review current tooling to identify incremental monitoring opportunities, and communicate needs to engineering teams that support SOC
Engaging in all forms of communications (e.g. phone calls, instant-messaging, web page updates) to ensure log onboarding, review, and data quality analyses are efficient and involve appropriate application managers
Producing training documentation and process documentation.
Recommending then implementing approved program improvements.
For Immediate Response, Please send your Resume to
TRIGYN TECHNOLOGIES, INC. is an EQUAL OPPORTUNITY EMPLOYER and has been in business for 30 years. TRIGYN is an ISO 9001:2015, ISO 27001:2013 (ISMS) and CMMI Level 5 certified company.
See job description
Contract 6 Months