The SOC Solution Designer provides technical design, business consulting, and analytical services for SOC solutions. They specialize in creating technical specifications for cybersecurity solutions like SIEM, SOAR, and Threat Intelligence Platforms, typically for low to medium complexity projects. The role is responsible for ensuring that SOC designs are executable and meet requirements. The designer works both independently and collaboratively in a matrixed team environment to deliver these solutions.
- Job Descriptions
- Qualifications
- Develop and use SOC design process documentation that defines in detail the design steps, implementation documentation and systems used in the solution design function
- Lead requirements gathering for SOC design inputs
- Prepare technical architectural and implementation SOC documents and works with the project management to develop the implementation plan including bill of quantities, cost plans, project deliverables and schedules
- Develop design, implementation, installation, and configuration of SIEM platforms and components
- Log source integration and planning
- Develop advanced SIEM correlation rules / use cases, reports and dashboards to detect emerging threats
- Develop advanced reports to meet the requirements of key stakeholders
- Implementing use cases as required by customer security team
- Collaborate with SOC team to optimize the SIEM performance to better serve the needs of the business and create adequate visibility on information assets/infrastructures of interest
- More than 4 years of working experience in cybersecurity operation (SOC, SIEM, SOAR, threat intelligence, Digital Forensic & Incident Response)
- University degree or equivalent in Cybersecurity, IT or Electrical Engineering
- Hands-on experience in one or more key security domains, including SIEM, endpoint detection, or vulnerability management
- Possess one of security certification such as CompTIA Security+ or Certified Ethical Hacker (CEH) are mandatory
- SIEM-related certifications (e.g., Microsoft, Splunk Power User, ArcSight Analyst) are a plus but not mandatory
- Basic understanding of threat detection and alert management processes
- Familiarity with cloud security practices and tools (AWS, Azure) and experience with basic log management
- Basic scripting experience (e.g., Python, Bash) to support automation tasks within the SIEM environment
- Ability to perform troubleshooting of SIEM-related issues and resolve basic problems, escalating more complex issues when necessary
- Understanding of security alerts and the ability to assist SOC analysts with investigation
- Basic knowledge of cloud services and integrating cloud logs with SIEM
- Willingness to learn and develop advanced SIEM skills through hands-on experience and training
If you are interested in working at Digiserve and have met the requirements as mentioned above please send your resume to careers@Digiserve.co.id