• Lead the integration of AI security agents with existing SIEM systems and data platforms, ensuring seamless connectivity and data transformation.
• Collaborate with security operations teams to gather requirements and ensure AI agents can effectively utilize security data.
• Design and implement scalable and high-performance data transformation processes to optimize AI agent functionality.
• Develop and maintain data feeds compatible with frameworks like MITRE ATT&CK to enhance threat intelligence.
• Build and organize security information platforms to support the deployment and operation of AI security agents.

Requirements

• Extensive experience in developing and integrating SIEM systems, with hands-on knowledge of OCSF, Sigma, STIX/TAXII, and logset.
• Strong background in threat intelligence, detection engineering, and cybersecurity analytics.
• Proficiency in programming with Python and experience with cloud platforms, particularly AWS.
• Proven track record of working closely with security operations centers, threat intelligence teams, and incident response processes.
• Familiarity with machine learning and AI techniques as applied to cybersecurity.