Send me Jobs like this
Nationality
Any Nationality
Gender
Not Mentioned
Vacancy
1 Vacancy
Job Description
Roles & Responsibilities
Responsible for configuring, maintaining, and supporting CSOC platforms, tools and logging infrastructure ensuring all systems fully operational and secure. Manage the development, customization and tuning of security content, including use cases, rules, and playbooks, to effectively detect and respond to cyber threats, ensuring detection logic and automation workflows align with CSOC priorities and cyber threat intelligence.
- Designing and build CSOC technologies such as SIEM, SOAR, EDR, and other platforms.
- Design and develop security content for, SIEM, SOAR and EDR
- Configure and maintain SIEM, SOAR, EDR, and other CSOC platforms.
- Build and manage logging infrastructure to ensure full telemetry coverage.
- Manage log source onboarding, parsing, normalization, data ingestion pipelines, and enrichment activities.
- Develop, test, and fine-tune detection rules, correlation logic, and alert conditions.
- Map and report detection coverage against frameworks (e.g., MITRE ATT&CK).
- Propose new detection ideas based on threat research and attack simulations.
- Build SOAR playbooks and automation scripts for alert enrichment and incident response.
- Translate threat intelligence, red team findings, and vulnerability data into use cases.
- Perform false-positive analysis and rule optimization to improve fidelity.
- Maintain a content repository with versioning, documentation, and lifecycle status.
- Work with threat monitoring and DFIR teams to validate use case effectiveness.
- Maintain system documentation, configuration baselines, and maintenance records.
- Monitor health and availability of all logging pipelines and tools.
- Conduct root-cause analysis of tool outages or data loss.
Desired Candidate Profile
Bachelor s degree in Computer Engineering, Computer Science, Information Technology, or a related field.
- 3 6 years of experience in Cybersecurity Operations (CSOC), Detection Engineering, or Detection Content Development.
- Strong understanding of SOC architecture, security technologies, and log management, including ingestion, parsing, enrichment, correlation, and storage best practices.
- Hands-on experience with SIEM/SOAR platforms such as Splunk, ELK, LogRhythm, Microsoft Sentinel, Palo Alto XSIAM, or similar.
- Solid knowledge of network infrastructure, Linux/Windows administration, and system monitoring, with expertise in security telemetry (firewall, EDR, proxy, and other log sources).
- Proficiency in query and scripting languages (e.g., KQL, SPL, Sigma) for automation, detection tuning, and source validation.
- Familiarity with SOAR automation and orchestration tools (e.g., Cortex XSOAR, Sentinel Logic Apps, or Phantom) and experience designing scalable, reusable detection content.
- In-depth understanding of threat detection concepts, attacker behaviors, and MITRE ATT&CK mapping, including content gap analysis and threat model alignment.
- Strong analytical and troubleshooting skills with the ability to ensure high availability and reliability of security tooling.
- Knowledge of AI/ML concepts and their application in cybersecurity for detection and automation use cases.br> Good communication and coordination skills, with the ability to collaborate effectively across teams such as Threat Monitoring, CTI, and DFIR.
- Strong documentation and version control discipline (e.g., Git, Confluence) and attention to detection accuracy and operational impact.
- Understanding of data integrity, retention policies, and relevant regulatory/compliance standards.
- Relevant certifications in SIEM/SOAR/EDR platforms (e.g., Splunk, ELK, LogRhythm, Microsoft Sentinel, Palo Alto XSIAM, or equivalent) are preferred.
Company Industry
- Banking
- Financial Services
- Broking
Department / Functional Area
- IT Software
Keywords
- Deloitte Innovation Hub Cyber Security SecOps Detection Senior Engineer
Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at abuse@naukrigulf.com
Deloitte
Deloitte, established globally in 1845, is the world s largest and leading professional services firm, providing Audit & Assurance, Tax & Legal and Consulting and related services to public and private clients spanning multiple industries. Present in more than 150 countries, Deloitte is distinct in its ability to help clients solve their most complex problems, from strategy to implementation. Deloitte innovation hub (DIH) is a strategic initiative/priority established by Deloitte North & South Europe (NSE) to support our ambition to become the leading business transformation partner of choice for our clients and to expand and scale our delivery footprint across EMEA. With access to a scaled, diverse, highly skilled, motivated, and engaged workforce, DIH is delivering complex technical solutions for clients most complex business problems, across Portfolios that include Strategy & Transactions , Customer , Engineering, AI & Data, Enterprise, Technology & Performance and Cyber . DIH is aiming to become the destination for top talents in Egypt for a long, exciting career. We invest in outstanding people of diverse talents and backgrounds and empower them to achieve more than they could elsewhere. Our work combines advice with action and integrity. We believe that when our clients and society are stronger, so are we. Our organization has grown in scale and diversity, providing services across the region, with our shared culture remaining the same. We aim to help clients realize their ambitions, make a positive difference in society, and maximize the success of our people. This drive fuels the commitment and humanity that run deep through our every action.