ZP Group Mclean , VA 22107
Posted 5 days ago
Piper Companies is seeking a Sr. SIEM Engineer to join a leading cybersecurity organization. The Sr. SIEM Engineer will provide strategic leadership and operational support for our clients' Vulnerability Management processes.
Responsibilities of the Sr. SIEM Engineer include:
Collaborate with a security operations team to deliver top-tier vulnerability management services to Cloud Service Providers and organizations in highly regulated sectors.
Review and analyze vulnerability data from various sources, including penetration testing and vulnerability scanning, to assess risk levels to business assets.
Conduct regular and on-demand OS/DB & Web scanning activities across multiple customer environments.
Build, configure, and manage vulnerability management tools within customer environments, serving as the go-to expert for all related queries.
Support customers in scanning their FedRamp environment, setting standards, and managing false positives and exceptions.
Utilize customer scan data to develop and maintain a Plan of Action and Milestones (POAM) for periodic delivery to customers.
Qualifications for the Sr. SIEM Engineer:
4+ years of relevant experience in professional services, vulnerability management, and compliance monitoring.
Proficiency with ITSM solutions such as Jira and ServiceNow, and a track record of delivering to SLAs
Strong skills in web application testing, API testing, and network testing.
Hands-on experience with Burp Suite Professional or similar DAST tools.
Proficiency in scripting languages such as Python and/or PowerShell.
1-2 years of experience in developing playbooks, runbooks, and troubleshooting technical issues.
Solid understanding of Windows and Linux patching processes.
Knowledge of vulnerability scoring systems like CVSS/CMSS.
Experience in building, configuring, and managing vulnerability scanning tools, with a preference for Nessus/Burp Suite.
Ability to analyze vulnerabilities and adjust risk ratings based on internal factors.
Experience in defining Operating System Baseline Configuration standards, such as the CIS Critical Security Controls Scanning, and working with teams to remediate and report on results.
Compensation for the Sr. SIEM Engineer:
ZP Group