Security Information and Event Management Subject Matter Expert
Montréal, Canada
6d ago

Position Description

CGI is currently building a pool of candidates for future opportunities. The SIEM SME will provide operational support, technical advice, as well as project support to vital organization-wide IT security services.

The consultant will use security technology to ensure the confidentiality, integrity, and availability of the information assets.

More specifically, the consultant will use advanced security technologies and knowledge of industry trends and best practices to help safeguard the organization's assets and information by automating SIEM tasks.

Your future duties and responsibilities

  • Provide advanced development, implementation and support services for the automation and scripting of the Security Operations Centre (SOC) tasks related to the organization’s SIEM solution
  • Work with stakeholders to research, develop, test, deploy, monitor, tune, report, and maintain SOC automation tasks / scripts, including solution dashboards
  • Develop and improve deployment and operations support documentation related to the SOC automation tasks / scripts via the SIEM solutions
  • Provide SIEM automation advice to management and projects on the appropriate direction, evolution, and usage of SIEM / ITSM technologies relating to the integration of various security technologies used in an SOC
  • Function as a subject matter expert in SIEM automation, providing advice to all stakeholders
  • Participate and contribute to the planning and prioritization of SOC automation tasks
  • Contribute and support various SOC workflow development and documentation sessions in order to automate them, where necessary
  • Help define and implement SOC automation guidelines at the organization for its SIEM solutions
  • Provide on-the-job training to staff for automation tasks in the SIEM technologies
  • Work autonomously to resolve complex problems in a multifunctional setting as well as assess and communicate issues of technology and automation to the appropriate stakeholders
  • Develop and maintain collaborative relations with internal and external counterparts (partners, clients and suppliers) to support operational automation objectives
  • Required qualifications to be successful in this role

  • Bilingualism (French and English) required
  • University degree or college diploma in computer science, information technology, or equivalent
  • A minimum of two (2) years of demonstrated experience in relevant information technologies with a concentration in IT security at the enterprise level
  • Demonstrated advanced experience in scripting and API
  • Demonstrated advanced experience working with SIEMs, network protocols, Windows / Linux / Unix system administration
  • Direct and comprehensive knowledge of SOC operations, including IT security incident management
  • Ability to work independently and handle multiple tasks concurrently
  • Adaptable to diverse environments
  • CISSP cyber security certification is an asset
  • French
  • What you can expect from us

    Build your career with us.

    It is an extraordinary time to be in business. As digital transformation continues to accelerate, CGI is at the center of this change supporting our clients’ digital journeys and offering our professionals exciting career opportunities.

    At CGI, our success comes from the talent and commitment of our professionals. As one team, we share the challenges and rewards that come from growing our company, which reinforces our culture of ownership.

    All of our professionals benefit from the value we collectively create.

    Be part of building one of the largest independent technology and business services firms in the world.

    Report this job

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form