The SIEM Engineer is responsible for planning, implementing, managing, the monitoring of the City of Philadelphia’s security infrastructure in order to protects the City’s data, systems, and networks.As a SIEM Engineer, you will join a team responsible for managing the City's network infrastructure, ensuring its security, and advancing its modernization and sustainability. You will work closely with other team members and its director to design, implement, and maintain a network that remains secure while also allowing City employees to work efficiently. Your work to ensure secure and fast network capabilities will be critical to supporting the City's emerging, innovative business solutions. Collaboration with both your own team and across other functional units of OIT is key to providing a municipal network capable of supporting the modernization of City business operations.As a SIEM Engineer, some of your opportunities will include:
       SME for onboarding SIEM (Qradar) components.
       Manage appliances related to OS and SIEM software. (Juniper JSA, IBM Qradar)
       Create rules for compliance and auditing requirements.
       Manage lists for current security threats.
       Maintain log sources and monitor data retention.
       Manage SIEM accounts (via AD).
       Perform upgrades and install patches as necessary.
       Create custom documentation for internal needs.
       Perform other duties as assigned.
Competencies, Knowledge, Skills and AbilitiesRequired Knowledge
   Solid understanding of SIEM, minimum 1 year experience with IBM Qradar
   Solid understanding of Information Security and Networking
   Command line interfaces
   Excellent written and verbal communication skills
   Demonstrated understanding of IRS1075, HIPAA, CJIS, etc.Helpful Knowledge
   Juniper SRX experience (5000 series)
   Juniper router and switching experience