Description
Key Responsibilities:
• Develop parameterized SQL queries to extract relevant security data from our OCSF-structured data lake house.
• Collaborate with the Cyber GRC team to align queries with security use cases such as:
o Asset and user discovery & analysis
o Threat hunting to identify indicators of compromise
o Detection & response for unauthorized access and privilege misuse
o Third-party monitoring to track access and identify anomalies
o Incident response investigations
o Mapping security events to compliance frameworks
o Analysis of suspicious network traffic
• Optimize query performance and ensure accuracy in data retrieval.
• Provide documentation and guidance to enable GRC team members to effectively use the queries.
Qualifications:
• Resource expected at Cox office 1-2 days per week
• Strong experience in SQL, including writing and optimizing parameterized queries.
• Background in cybersecurity, with knowledge of security frameworks and best practices.
• Familiarity with the Open Cybersecurity Schema Framework (OCSF) preferred.
• Experience in querying security data lakes and working with large-scale security datasets. Particularly, Snowflake.
• Ability to translate cybersecurity needs into efficient SQL queries.
• Strong analytical skills and attention to detail.
Preferred Skills:
• Hands-on experience in security operations, threat hunting, or compliance mapping.
• Understanding of cloud-based security data lakes (e.g., Snowflake, AWS, Azure, GCP).
• Experience working with security event logs and SIEM platforms
Education
Any Gradute
- Posted On: 7 days Ago
- Experience: 5+ years of experience
- Openings: 1
- Category: Cyberark Engineer
- Tenure: Contract - Corp-to-Corp Position