Security Consultant – SIEM & Dynatrace Specialist

About the role

We are seeking a hands‑on Security Consultant to join a regional banking client’s security and infrastructure team. You will work with SIEM and Dynatrace platforms to monitor, investigate, and improve the observability and security posture of critical banking applications.

Key responsibilities

• Monitor and triage alerts across SIEM and APM tools, escalating incidents when needed.
• Manage Dynatrace dashboards, alerting profiles, and SLO configurations for core banking services.
• Onboard new log sources, write and tune correlation rules, and reduce false‑positive noise.
• Perform root‑cause analysis on performance and security events in collaboration with network, application, and security teams.
• Support incident‑response activities, including documentation, timelines, and post‑incident reviews.
• Maintain runbooks, escalation procedures, and operational documentation.
• Ensure monitoring coverage meets compliance requirements such as PCI‑DSS, SOX, and FFIEC.

Required profile

• 3+ years of hands‑on experience with Dynatrace OneAgent deployment, dashboards, Davis AI alerting, and DQL.
• Proficiency with at least one enterprise SIEM platform (Splunk, Microsoft Sentinel, IBM QRadar, or LogRhythm).
• Strong understanding of log pipelines, event correlation, and parsing formats (Syslog, CEF, JSON).
• Working knowledge of TCP/IP, DNS, HTTP/S, firewall concepts, and network traffic analysis.
• Ability to write basic automation or queries in Python, PowerShell, SPL, or KQL.
• Familiarity with PCI‑DSS, SOX, or other financial‑services security frameworks is a plus.

Required skills

• Dynatrace (OneAgent, dashboards, Davis AI, DQL)
• SIEM platforms: Splunk, Microsoft Sentinel, IBM QRadar, LogRhythm
• Log formats: Syslog, CEF, JSON
• Network protocols: TCP/IP, DNS, HTTP/S, firewall concepts
• Python, PowerShell, SPL, KQL
• PCI‑DSS, SOX compliance knowledge