Sr. SIEM Engineer

Company: Alliant Credit Union ( Learn More )

General Information
4 Year Degree
At least 2 year(s)
Not Specified
Job Description Start a Rewarding Career with Alliant

Why Alliant?

We’re not a typical financial institution – we’re better. We’re an innovative, fun-loving, highly-engaged group of professionals that are committed to our company and the communities we do business in. We love to recognize and celebrate each other.

Over 90% of our employees say we are a great workplace that is focused on our mission, vision and the future of banking.


What will your day look like?

You will be responsible for responsible for ensuring system logs and events are properly identified, alerted, analyzed, communicated and reported. This role will minimize fraud and security intrusions by effectively leveraging the organization’s Security Information and Event Management (SIEM) system. Additionally, this role will aide in the monitoring, threat analysis, trend analysis, troubleshooting of security device monitoring and incident investigation using infrastructure and applications logs from across the enterprise.


Do you see yourself doing this?

  • Designing, writing and monitoring rules to safeguard Alliant’s information assets, and effectively identify and mitigate both internal and external threats to these goals
  • Facilitating the monitoring, detection, analysis and resolution of security incidents
  • Providing infrastructure protection through continuously analyzing alerts and logging
  • Developing new triggers and reporting within SIEM and log retention/management tools
  • Writing rules in Security Information and Event Management (SIEM) system
  • Working with other teams and third party vendors to research and resolve security, fraud and related system integration issues
  • Automating the collection, parsing and importing of log files
  • Designing and writing MS SQL queries to analyze data and confirm alerts are working as desired
  • Coordinating with multiple technology staff and other business stakeholders in response to a potential detected incident.
  • Researching and identifying key indicators of malicious activities on the network and end user workstations
  • Reviewing industry and vendor security alerts for vulnerabilities and security and fraud issues
  • Working with peer teams to create mitigation solutions based on vendor advisories
  • Maintaining awareness of trends in security, fraud, regulatory, technology and operational requirements
  • Participating in security incident response efforts by maintaining an in-depth knowledge of common attack vectors, common security/fraud exploits, and countermeasures
  • Completing tasks designed to ensure security of the organization's systems.
  • Participating in post-mortem investigation of security and fraud incidents, preparing related incident reports documenting the findings and enhancing systems to reduce similar events
  • Initiating escalation procedure to counteract potential threats/vulnerabilities
  • Actively participating in the evaluation and selection of new security and anti-fraud tools
  • Owning and managing assigned tickets from start to resolution
  • Job Requirements

    What makes you a great fit?

    You’ll be a great fit if in addition to the completion of a Bachelor’s degree with 2+ years of hands-on Information Security experience within a bank or Credit Union (preferred), and you have:

    • 2+ years of hands­-on experience with one or more industry leading SIEM products and related systems (e.g., Splunk, LogRhythm, QRadar, RSA Web Threat Detection), MS SQL, Cisco, Microsoft server products, Redhat Linux, DLP products (e.g, Symantec DLP, Websense DSS) and other log management products.
    • Ability to create complez SQL queries, analyze results and identify trends
    • Experience performing event correlations and writing regular expressions
    • Experience creating custom rules in SIEM products
    • Experience analyzing security event trends and proactively designing solutions to mitigate them
    • Direct experience or familiarity with cyber­attack vectors
    • Available to be on­call for Incident Response as needed

    When you’re happy, we’re happy!

    As a thank you for joining our team, you’ll benefit from:

    • Competitive medical, dental, and free vision benefits
    • Competitive compensation plan
    • Contributions towards gym memberships
    • Generous PTO and banking holidays off

    Still not convinced?

    We’re on the list of 100 Best Medium Companies to work for, check it out here. For more details you can also visit our Glassdoor and LinkedIn profiles.