Vulnerability Management, SOC, SIEM. Security Incident Analysis, Incident Response, Security Awareness Training
Aktualisiert am 18.11.2024
Profil
Mitarbeiter eines Dienstleisters
Remote-Arbeit
Verfügbar ab: 18.11.2024
Verfügbar zu: 100%
davon vor Ort: 100%
Skill-Profil eines fest angestellten Mitarbeiters des Dienstleisters

Einsatzorte

Einsatzorte

Deutschland, Schweiz, Österreich
möglich

Projekte

Projekte

1 Jahr 1 Monat
2023-08 - 2024-08

SOC Consulting

Transmission System Operator
Transmission System Operator
Support in the conception, development and integration of a security operations center into the company, taking
into account regulatory requirements according to KRITIS. Strong focus on the topics of incident detection and
incident response.
6 Monate
2024-01 - 2024-06

Managed Security Service Onboarding

Design and conception of an on-premises SIEM architecture using Splunk (high-level and low-level), installation
and configuration of SIEM components from OS level onwards, onboarding of log sources and configuration of
their parsing.
9 Monate
2023-04 - 2023-12

Security Incident Analysis

Triage & analysis of security incidents using contextual information, open-source threat intelligence and sandbox
analysis. Partial coordination and implementation of initial responses based on the severity and impact of the
incidents. Conduction of supporting research on opportunities to optimize the security posture.
4 Monate
2022-12 - 2023-03

Managed Security Service Onboarding (cloud SIEM)

Design and conception of a cloud SIEM architecture using Splunk Cloud (high-level and low-level), installation
and configuration of SIEM log collection components from OS level onwards, onboarding of log sources and
configuration of their parsing.
1 Monat
2022-11 - 2022-11

SOC Maturity Assessment

Maturity assessment of a hybrid SOC using a self-developed approach. Evaluation of people, processes and
technology used in the SOC services and identification of gaps in regards to best practices.
Derivation of improvement measures to attain desired SOC Maturity.
1 Jahr 1 Monat
2021-10 - 2022-10

SIEM Implementation

Support in the implementation of incident detection mechanisms, including:
? Identification of threat scenarios to detect by SIEM use cases
? SIEM use case conception, engineering and testing in collaboration with application and system owners
? Optimization of the detection engineering process 
8 Monate
2021-02 - 2021-09

Incident Response Optimization

Review and optimization of the existing incident response program. Including:
? Creation of a security incident management policy
? Review, optimization and documentation of the existing incident response processes, considering
requirements to data protection and interfaces to other processes
? Preparation and planning for specific threat scenarios
8 Monate
2020-06 - 2021-01

SIEM Integration Support

Advisory on the conception and integration of a SIEM system within the company.
Preparation and documentation of the necessary organizational measures, such as a logging and monitoring
policy, organizational structure, roles and responsibilities, and definition of processes, e.g. for testing and
development of SIEM use cases.

Einsatzorte

Einsatzorte

Deutschland, Schweiz, Österreich
möglich

Projekte

Projekte

1 Jahr 1 Monat
2023-08 - 2024-08

SOC Consulting

Transmission System Operator
Transmission System Operator
Support in the conception, development and integration of a security operations center into the company, taking
into account regulatory requirements according to KRITIS. Strong focus on the topics of incident detection and
incident response.
6 Monate
2024-01 - 2024-06

Managed Security Service Onboarding

Design and conception of an on-premises SIEM architecture using Splunk (high-level and low-level), installation
and configuration of SIEM components from OS level onwards, onboarding of log sources and configuration of
their parsing.
9 Monate
2023-04 - 2023-12

Security Incident Analysis

Triage & analysis of security incidents using contextual information, open-source threat intelligence and sandbox
analysis. Partial coordination and implementation of initial responses based on the severity and impact of the
incidents. Conduction of supporting research on opportunities to optimize the security posture.
4 Monate
2022-12 - 2023-03

Managed Security Service Onboarding (cloud SIEM)

Design and conception of a cloud SIEM architecture using Splunk Cloud (high-level and low-level), installation
and configuration of SIEM log collection components from OS level onwards, onboarding of log sources and
configuration of their parsing.
1 Monat
2022-11 - 2022-11

SOC Maturity Assessment

Maturity assessment of a hybrid SOC using a self-developed approach. Evaluation of people, processes and
technology used in the SOC services and identification of gaps in regards to best practices.
Derivation of improvement measures to attain desired SOC Maturity.
1 Jahr 1 Monat
2021-10 - 2022-10

SIEM Implementation

Support in the implementation of incident detection mechanisms, including:
? Identification of threat scenarios to detect by SIEM use cases
? SIEM use case conception, engineering and testing in collaboration with application and system owners
? Optimization of the detection engineering process 
8 Monate
2021-02 - 2021-09

Incident Response Optimization

Review and optimization of the existing incident response program. Including:
? Creation of a security incident management policy
? Review, optimization and documentation of the existing incident response processes, considering
requirements to data protection and interfaces to other processes
? Preparation and planning for specific threat scenarios
8 Monate
2020-06 - 2021-01

SIEM Integration Support

Advisory on the conception and integration of a SIEM system within the company.
Preparation and documentation of the necessary organizational measures, such as a logging and monitoring
policy, organizational structure, roles and responsibilities, and definition of processes, e.g. for testing and
development of SIEM use cases.

Vertrauen Sie auf Randstad

Im Bereich Freelancing
Im Bereich Arbeitnehmerüberlassung / Personalvermittlung

Fragen?

Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Das Freelancer-Portal

Direktester geht's nicht! Ganz einfach Freelancer finden und direkt Kontakt aufnehmen.