Machine Data Intelligence Engineer
Overview
LogRhythm is the pioneer in Threat Lifecycle ManagementTM (TLM) technology, empowering organizations on six continents to rapidly detect, respond to and neutralize damaging cyberthreats. Our TLM platform unifies leading-edge data lake technology, artificial intelligence and security analytics in order to serve as the foundation for the AI-enabled security operations center. We are consistently recognized as a leader in the security intelligence domain and have been placed in Gartner’s SIEM Magic Quadrant for 6 consecutive years.
We are looking for a Machine Data Intelligence (MDI) Engineer to join our team in Boulder, Colorado. In this role, you will have the opportunity to work within our R&D group, LogRhythm Labs, where you would be responsible for actively developing and maintaining the Knowledge Base. This is a great opportunity to leverage your systems and networking knowledge and directly contribute to delivering well-defined intelligence and data analytics to our customers.
Responsibilities
- Create normalization and classification rules based on analyzed log data from network and security devices, operating systems, applications, and databases
- Maintain, support, implement new device integrations, and deliver our Knowledge Base of rules to global customers
- Manage and respond to a high volume of inbound Support cases and requests from Sales, Business Development, Professional Services, and Engineering
- Focus on development work related to the remediation of bugs, resolution of necessary updates, and improvement in device performance
Requirements
- Strong understanding of networking concepts (e.g. TCP/IP, DNS) and various technology silos (e.g. routers, switches, VPNs)
- Experience with logging systems (e.g., Syslog, Flat File, UDLA, Windows Event Log)
- Comfortable installing and configuring various operating systems
- Comfortable installing and configuring windows-based applications
- Comfortable installing and configuring *NIX-based applications
- Experience and/or a strong understanding of regular expressions
- Detail and quality-oriented with excellent verbal and written communication skills
Valued Skills/Qualifications
- 3+ years combined field experience in the following areas:
- System administration
- Network administration
- Security analysis/administration
- IT audit
- University computer science course work
- Bachelor’s degree in Computer Science, Computer Information Systems, or other related degree/industry certifications (e.g., CISSP, CISA, CEH, SANS)
- Security Information and Event Management solution experience
- Experience with case management via Salesforce Service Cloud
- Basic knowledge of SQL Server administration
- Scripting language experience (e.g., PowerShell, Python)
LogRhythm is proud to be an equal opportunity employer. We are committed to equal opportunity regardless of race, color, ancestry, religion, gender, gender identity, genetic information, parental or pregnancy status, national origin, sexual orientation, age, citizenship, marital status, disability, or Veteran status.