Summary: Seeking a Security Infrastructure Engineer to architect and maintain data ingestion pipelines, develop custom parsers, and monitor data health for enterprise SIEM platforms. Highlights: 1. Architect and manage enterprise-grade SIEM/SOAR platforms. 2. Develop custom parsers for log normalization. 3. Utilize Python for security workflow automation. **Academic \& Professional Qualifications:** * Bachelor’s degree in computer science, IT, Cybersecurity, or equivalent. * SIEM Certification ( Google SecOps, Splunk, Azure Sentinel). **Preferred:** * Security certifications such as Security\+, CySA\+, CEH, CISSP, GCIH * Google SecOps Engineer **Experience:** * 3–5 years of hands\-on experience in Security Engineering, SOC Automation, DevOps Engineer, Security Operations, or Infrastructure Security. **Skills and Requirements:** **Technical Skills (Must Have)** * SIEM/SOAR Mastery: Proven experience architecting and managing enterprise\-grade platforms (e.g., Splunk, Azure Sentinel, or QRadar), with at least 1–2 years specifically focused on Google SecOps (Chronicle). **Key Requirement: Required skills: Google SecOps.** * Coding \& Scripting: Professional experience using Python to automate security workflows or build custom API connectors. * Cloud Infrastructure: Hands\-on experience managing security within Google Cloud Platform (GCP), including VPC service controls, IAM, and Cloud Logging. * Languages: Python (Advanced), SQL (BigQuery), YARA/YARA\-L, and Bash. * Frameworks: MITRE ATT\&CK, NIST Cybersecurity Framework. * Tools: Git (Version Control), Terraform (Infrastructure as Code), Docker/Kubernetes (Containerization). * Data Standards: Deep knowledge of JSON, Protobuf, and Regex for log parsing and normalization. **Security Infrastructure Engineer** Functional Responsibilities: Data Ingestion and Normalization * Pipeline Management: Architect and maintain the ingestion of telemetry from multi\-cloud (GCP, AWS, Azure) and on\-premises environments using Bind Plane Forwarders, Cloud\-to\-Cloud (C2C) connectors, and Webhooks. * Parser Development: Design, build, and troubleshoot custom parsers (CBN) to ensure non\-standard log sources are correctly normalized into the Unified Data Model (UDM). * Data Health Monitoring: Build dashboards to monitor ingestion rates, latency, and data drops to ensure the SIEM is always receiving high\-quality, actionable data. Job Type: Full\-time Pay: QAR21,000\.00 \- QAR25,000\.00 per month Work Location: In person