MetTel is looking for a highly motivated and experienced Cybersecurity Analyst - SIEM to join our growing Security & Compliance team!
Why MetTel
MetTel is a cutting‐edge telecom service provider delivering software and telecom services to enterprise companies nationwide. Our teams help create next-‐generation systems to meet the challenge of today’s rapidly changing business climate, and set new standards for the telecom industry. From traditional voice to advanced services, MetTel’s extensive partnerships enable us to deliver a complete portfolio of services in the United States, Canada and Puerto Rico as well as global MPLS and VoIP solutions. We believe that each team member is a key to the success and sustainability of the group. In order to achieve this, we offer an environment where all professionals can grow and develop their skills and competencies, collaborate with diverse professionals, share knowledge and enjoy a rewarding career.
Key Responsibilities
In this role, you will be responsible for reducing the impact of security incidents and ensuring that critical business operations continue unhindered. In addition, the operation of Splunk and ArcSight SIEMs, managing logging, developing searches and alerts, performing security incident response, conducting in-depth analysis of network and endpoint data, and incorporating threat intelligence to enhance detection and mitigation strategies. maintaining risk management framework, vulnerability management, and configuration compliance for our core infrastructure as part of the security & compliance team. You will also manage compliance for NIST800-53 moderate and high environments and ensure development, implementation as well as assessment of relevant security controls.
Additional Key Responsibilities Include
- Responsible for managing Splunk Enterprise, Splunk Enterprise Security, and ArcSight.
- Configure logs for CIM compliance and data model mapping in Splunk for improved detection capabilities.
- Implement Risk-Based Alerting (RBA) security framework within Splunk.
- Develop customized correlation search and rules to detect security events relevant to core infrastructure.
- Create and test detections written in advanced Splunk Programming Language (SPL).
- Develop rules, alerts and dashboards based on business and security requirements.
- Perform analysis on hosts running on a variety of platforms and operating systems, to include Microsoft Windows & Linux, routers, switches, firewalls and virtual environments.
- Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system logs) to identify possible threats to network security.
- Leverage tools including Splunk, ArcSight, ServiceNow as part of duties performing incident response analysis.
- Correlate event or incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation.
- Monitor and analyze security events and alerts from multiple sources, including security information and event management (SIEM) software, network and host-based intrusion detection systems, firewall
Desired Skills And Experience
- Bachelor’s degree in computer science. (Computer Security/Information Security degree preferred), in lieu of a degree, additional experience will be considered.
- 4+ years of experience working with Splunk.
- 2+ years of experience working with ArcSight (Optional).
- Experience working in a SOC Environment.
- Knowledge of and experience with intrusion detection/prevention systems.
- Experience analyzing network and host-based security events.
- Knowledge of various security methodologies and processes, and technical security solutions.
- Knowledge of incident response life cycle and steps.
Additional Criteria
- Knowledge of: Strong Authentication, End Point Security, Internet Policy Enforcement, Firewalls, Web Content Filtering, Database Activity Monitoring (DAM), Public Key Infrastructure (PKI), Data Loss Prevention (DLP), Identity and Access Management (IAM) solutions.
For more information about our company visit our website at
MetTel | Business Telecom Voice, Network & Mobility Services
Keywords: Cybersecurity Analyst, Cybersecurity Analyst SIEM, #Cybersecurity, #CybersecurityAnalyst, Cybersecurity Jobs Near Me, LinkedIn, Telecommunications, #TelecommunicationJobs, Verizon, T-Mobile, Network Security, #NetworkSecurity, ATT, Cybersecurity Compliance, #CybersecurityCompliance, New York, New Jersey, #CybersecurityJobsNearMe, Indeed, Google, SIEM