Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Jobs InfoSec Jobs

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Deployment and Integration SOAR/SIEM Consultant
Company FireEye
Location USA (remote)
Preferred GIAC Certifications GCIH, GCIA, GCED
Travel 50%
Salary Not provided
Contact Name MShrewsbury
Contact Email mshrewsbury/at/
Expires 2020-10-16

Job Description

FireEye, Inc.
Deployment and Integration - SOAR/SIEM Consultant (Remote US)
Houston, TX, USA
Company Description
FireEye is the intelligence-led security company. Working as a seamless, scalable extension of customer security operations, FireEye offers a single platform that blends innovative security technologies, nation-state grade threat intelligence, and world-renowned Mandiant® consulting. With this approach, FireEye eliminates the complexity and burden of cyber security for organizations struggling to prepare for, prevent, and respond to cyber attacks. FireEye has over 9,000 customers across 103 countries, including more than 50 percent of the Forbes Global 2000.

Job Description
The Deployment and Integration – SOAR/SIEM Consultant is responsible for enabling FireEye customers to protect their networks, systems, and data using FireEye technology to combat advanced attackers. As such, you will work with customers directly and assist them in building defensive, highly-customized security playbooks using the FireEye Security Orchestrator and in implementing specific use cases in FireEye Helix. This role is highly detail oriented and will require hands-on knowledge of programming languages, APIs and integrations.


Design, build and maintain efficient, reusable and reliable Security Automations for security operations centers around the world
Onboard data sources in FireEye Helix and design and build rules and dashboards to implement customer use cases
Create detailed technical process documentation
Manage and lead projects with direct customer interaction
Work with strategic customer accounts on product related consulting services
Review API documentation and connect third-party services to FireEye products
Provide deployment and configuration services for the FireEye suite of products
Integrate FireEye security solutions with other security products in the customer’s network
Support regional sales staff on in-depth technical consulting services
Maintain current knowledge of tools and best-practices in combatting advanced persistent threats; including tools, techniques, and procedures (TTPs) of attackers and tools and processes for forensics and incident response
1+ years in a security consulting environment
2+ years of hands-on experience with scripting languages such as JavaScript and Python
2 to 5 years’ experience in network security
Working knowledge of version control systems like GIT
Familiarity with at least one query language like SQL, MySQL, SPL, etc.
Experience working with REST and other third-party API integrations
General understanding of security infrastructure and related technologies (proxies, firewalls, email filtering technologies, and network intrusion detection systems)
Experience with virtualized environments like VMWare or VirtualBox
Experience with cloud providers such as Microsoft Azure, AWS, and GCP nice to have
Ability to use ticketing systems like ServiceNow and JIRA
Experience and knowledge of network protocols, packet flow, TCP and UDP traffic
Experience with FireEye security products, highly desired
SOC consulting experience, highly desired
Experience configuring, managing, and using one or more SIEM / SOAR products, highly desired
Additional Qualifications

Excellent communication and presentation skills, with the ability to present to a variety of internal and external audiences
Ability to handle multiple projects with limited oversight from project managers
Ability to build strong client relationships and to interact effectively at all levels of the customer’s organization, including senior executives
Ability to set and manage expectations with senior stakeholders and team members
Must be willing to travel 50%
Additional Information
At FireEye we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability. Requests for accommodation due to disability can be sent directly to