Senior Security Engineer - SIEM and UBEA

Marriott Senior Security Engineer - SIEM and UBEA Juneau, Alaska Apply Now

Schedule : Full-Time

Considering applying for this job Do not delay, scroll down and make your application as soon as possible to avoid missing out.

Located Remotely? Yes

Relocation? No

Position Type : Management

JOB SUMMARY

We are seeking a highly skilled and experienced Senior SIEM and UEBA Engineer to join our cybersecurity operations team. The ideal candidate will have extensive experience in security architecture and engineering, with a strong focus on SIEM, UEBA platforms, and log management.

Responsibilities include design, implementation, and maintenance of SIEM, UEBA, and log management systems. This role will provide engineering support for Insider Threat and Detection Engineering analytics teams to support the development of threat detections.

CANDIDATE PROFILE

Education and Experience :

Required :

• Bachelor’s degree in Computer Sciences or related field or equivalent experience / certification
• 3+ years of experience in security architecture and engineering on SIEM, UEBA, and log collection and management platforms.
• Scripting language experience (*nix shell scripting, Python, PowerShell, etc.) and regular expressions
• Linux and Microsoft operating systems (advanced knowledge)
• 5+ years of experience in some or all of the following : working in (or with) security functions such as SOC, CIRT, security engineering, risk management, vulnerability management;

technical infrastructure operations, administration, or systems engineering.

Preferred Skills / Experience :

• Current information security certification such as CISM, CISA, or CISSP or equivalent.
• Splunk Certification, including Splunk Enterprise Security Certified Admin.
• Cribl Certified Admin : Stream.
• Working knowledge of the NIST Cyber Security Framework and ISO / IEC 27001 : 2022.
• Working knowledge of the MITRE ATT&CK Framework.
• Exabeam UEBA platform and Advanced Analytics administration.
• Splunk Enterprise platform and Splunk Enterprise Security administration.
• Hands-on experience with logging implementations for services / assets including cloud service provider platforms (AWS, Azure, GCP).
• Familiarity with Identity and access management systems, firewalls, intrusion detection and prevention systems, proxies, and database fundamentals.
• Knowledge of IP networking.
• Solid written and verbal communication skills.

Core Responsibilities :

What You’ll be Doing :

• Designing, implementing, and maintaining the SIEM, UEBA, and log management systems.
• Implementing and maintaining data pipelines to analytics platforms to support threat detection with SIEM, UEBA, and other log collection and management tools.
• Collaborating with Insider Threat, Detection Engineering, and other security analytics teams to support the development of threat detection analytics.
• Collaborating with stakeholders in Global Information Security and other IT teams on the development of procedures, standards, and integration for logging and monitoring.
• Identifying and resolving escalated engineering-level analytics platform performance and functional problems.
• Collaborating with other teams such as Security Architecture and Security Engineering to ensure the security of our infrastructure.
• Keeping pace with the latest security trends, threats, and technologies and making recommendations for improvements.
• Providing technical guidance and mentoring to junior team members.
• Creating reports on analytics platform operations and documenting engineering processes.
• Providing direction and support for the development of platform metrics and dashboards.

Additional Responsibilities :

• Contributing to ongoing development and maintenance of documented standards within the Analytics Platform Engineering discipline.
• Researching emerging threats and adversary tactics to understand the threat landscape.
• Providing governance support for the analytics platforms.
• Supporting budgeting work with analysis of analytics platform resource utilization.
• Occasional participation in evaluations of new platforms and technologies.
• Attending SCRUM and prioritization meetings to review and update deliverables.

Marriott International is an equal opportunity employer. We believe in hiring a diverse workforce and sustaining an inclusive, people-first culture.

We are committed to non-discrimination on any protected basis, such as disability and veteran status, or any other basis covered under applicable law.

Marriott International is the world’s largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed.

Be where you can do your best work, begin your purpose, belong to an amazing global team, and become the best version of you.

J-18808-Ljbffr