About Protergo Cyber-Security
We are Indonesia's leading cyber-security company, specializing in both Blue Team (Defense) and Red Team (Attack) services. Founded by an experienced team of cyber-security experts and fully incorporated in Indonesia, we have an in-depth understanding of the nation's cyber-security landscape.
Job Description
We are seeking a skilled SIEM Engineer to join our security operations team. This individual will play a critical role in the development, deployment, and troubleshooting of SIEM (Security Information and Event Management) systems to monitor and analyze security threats in real-time. You will work closely with other IT and cybersecurity teams to design, implement, and maintain efficient SIEM systems that can detect and respond to potential security incidents. You will also provide support for ongoing troubleshooting, optimization, and tuning of SIEM solutions.
Key Responsibilities:
- SIEM System Development: Design and develop SIEM platforms to support efficient data collection, event correlation, and incident detection following the latest cybersecurity threats.
- Customization: Develop custom parsers, dashboards, and rules to meet the specific needs of the clients and improve threat visibility.
- Troubleshooting & Optimization: Diagnose and resolve issues within SIEM systems especially detection rules. Continuously optimize SIEM performance for efficiency and scalability.
- Alert Tuning & Correlation: Fine-tune alerting rules and correlation logic to reduce false positives and enhance detection accuracy. Create custom alerting and reporting mechanisms as needed.
- Automation Research: Research automation needs for incident response, data processing, threat detection, and reporting within the SIEM platform.
- Documentation & Reporting: Create and maintain clear documentation for SIEM configurations, customizations, detection rules, and troubleshooting procedures. Provide regular reports on SIEM performance, incident trends and detection capabilities.
Job Requirements
Education & Experience:
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- 3+ years of experience in SIEM system development, implementation, or troubleshooting.
- Proven experience with popular SIEM platforms (e.g., Splunk, QRadar, AlienVault, Wazuh, ELK Stack, etc.).
- Familiarity with security best practices, incident response, and network security concepts.
Technical Skills:
- Proficient in scripting languages (e.g., Python, PowerShell, or Bash) for automation and custom integration tasks.
- In-depth knowledge of log management, log parsing, and data normalization.
- Experience in creating custom dashboards, alerts, reports, and searches within SIEM platforms.
- Strong understanding of network protocols, security event types, and log formats (e.g., Syslog, Windows Event Logs, etc.).
- Experience with security technologies such as IDS/IPS, firewalls, anti-virus software, and endpoint detection tools.
- Experience and in-depth knowledge of cybersecurity trends and SIEM detection rules development.
- Hands-on experience in troubleshooting SIEM data collection, parsing, or integration issues.
- Understanding of threat intelligence feeds and their integration into SIEM.
Soft Skills:
- Strong problem-solving and analytical skills.
- Ability to work under pressure and handle multiple tasks simultaneously.
- Excellent communication skills, both written and verbal, with the ability to explain technical issues to non-technical teams.
- Detail-oriented with a focus on precision in configuring and tuning SIEM systems.
- Ability to collaborate effectively in a team-oriented environment.
Certifications (Preferred):
- Certified Information Systems Security Professional (CISSP).
- Certified Ethical Hacker (CEH).
- Splunk Certified Power User or Admin.
- IBM QRadar Certified SIEM Professional.
This position offers a great opportunity for professionals passionate about cybersecurity to deepen their expertise in SIEM systems while contributing to the overall security posture of the organization.
