SIEM Content Engineer
4 weeks ago
About KPMG in India
KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada.
KPMG entities in India offer services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment.
SIEM Content Engineer
Location: Mumbai/ Gurgaon
Experience Required: 3 to 8 years
Required Qualifications
- Bachelors/master’s degree in engineering.
- Experience in cybersecurity, with a focus operational security, including security operations center, incident response, SIEM platforms.
- Experience in Microsoft Sentinel analytical rule and Defender custom detection,
- Content development of new detection rules,
- Finetuning rules for whitelisting and
- Detection logic improvement.
Roles and Responsibilities include:
- Develop and implement custom analytics rules within Microsoft Sentinel to identify security threats and anomalies.
- Leverage KQL and other tools to create custom detection on Microsoft Defender XDR – MDE & MDCA.
- Create advanced detection rules based on business requirements & SOC Use Cases.
- Work with SIEM and SOAR solutions at scale.
- Collaborate with other security teams to identify and prioritize security requirements and develop effective solutions.
- Update the code (KQL) on analytical rule for finetuning the false positive incidents.
- Stay up to date with the latest security threats and trends and apply this knowledge to improve our security posture.
- Perform content enrichment depedepending on feedback received from security analysts
- Have a strong understanding of Cloud Security and Networking Concepts and practices.
- Helps to create reports that properly present the key risk and performance indicators.
- Communicating & reporting concise summaries of complex scenarios & information across diverse and senior stakeholder groups.
- Design, maintain Content Management standard operating procedures (SOP), processes and guidelines.
- Report preparation for leads and management review with data from dashboards & reports.
Skills and Experience required:
- Strong understanding of JSON, Kusto Query Language (KQL) and PowerShell languages.
- Experience analyzing data from cybersecurity monitoring tools such as SIEM / SOAR platforms, host and network logs, firewall and IPS/IDS logs and email security gateway.
- Strong understanding of security operations concepts: perimeter defense, endpoint management, data leak prevention, kill chain analysis and security metrics.
- Knowledge of the common attack vectors on various layers.
- Knowledge and experience working with the Cyber Kill Chain Model, MITER ATT&CK Matrix.
- Experience with Security Operations Center, SIEM management & solutions ownership.
- Knowledge of various security methodologies and technical security solutions.
- Conduct an audit of the platform configuration to optimize it.
- Optimizing the way logs are processed and leveraged by SOC team members.
- Knowledge on schemas of Microsoft Defender XDR solutions (Microsoft Entra ID and ID protection, Microsoft Defender for Endpoint, Microsoft Defender for Cloud apps, Microsoft Purview Information Protection) and Microsoft 365.
- Knowledge of schemas with security events logs from Microsoft windows server.
- Experience of working within a regulatory/controlled environment.
- Understanding of Cyber Security Risk and mitigation strategies.
Equal employment opportunity information
KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.
-
SIEM Content Engineer
4 weeks ago
mumbai, India KPMG India Full timeAbout KPMG in India KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India...
-
SIEM Content Engineer
4 weeks ago
mumbai, India KPMG India Full timeAbout KPMG in India KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India...
-
SIEM Content Engineer
4 weeks ago
Mumbai, India KPMG India Full timeAbout KPMG in IndiaKPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in...
-
SIEM Content Engineer
4 weeks ago
Mumbai, India KPMG India Full timeAbout KPMG in India KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across...
-
SIEM Content Engineer
4 weeks ago
Mumbai, India KPMG India Full timeAbout KPMG in IndiaKPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in...
-
KPMG India | SIEM Content Engineer | mumbai
4 weeks ago
mumbai, India KPMG India Full timeAbout KPMG in India KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India...
-
KPMG India | SIEM Content Engineer | mumbai
4 weeks ago
mumbai, India KPMG India Full timeAbout KPMG in IndiaKPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in...
-
SIEM – Qradar Engineering
4 weeks ago
mumbai, India Tata Consultancy Services Full timeGreetings, TCS is hiring for SIEM – Qradar Engineering Location: Mumbai Experience: 6+ years
-
SIEM – Qradar Engineering
4 weeks ago
Mumbai, India Tata Consultancy Services Full timeGreetings,TCS is hiring for SIEM – Qradar EngineeringLocation: MumbaiExperience: 6+ years
-
SIEM – Qradar Engineering
4 weeks ago
mumbai, India Tata Consultancy Services Full timeGreetings,TCS is hiring for SIEM – Qradar EngineeringLocation: MumbaiExperience: 6+ years
-
SIEM – Qradar Engineering
4 weeks ago
Mumbai, India Tata Consultancy Services Full timeGreetings, TCS is hiring for SIEM – Qradar Engineering Location: Mumbai Experience: 6+ years
-
SIEM – Qradar Engineering
4 weeks ago
Mumbai, India Tata Consultancy Services Full timeGreetings,TCS is hiring for SIEM – Qradar EngineeringLocation: MumbaiExperience: 6+ years
-
SIEM – Qradar Engineering
4 weeks ago
Mumbai, India Tata Consultancy Services Full timeGreetings,TCS is hiring for SIEM – Qradar EngineeringLocation: MumbaiExperience: 6+ years
-
Siem Admin
6 months ago
Mumbai, Maharashtra, India IBM Full timeIntroduction Your Role and Responsibilities This is level 2 role and would be responsible to support SIEM Management & content management for SIEM detection use-cases for the program. They would be overlooking technical services delivery for SOC program for your enterprise. If you thrive in a dynamic, reciprocal workplace, IBM provides an environment to...
-
Security Information and Event Management
2 weeks ago
Mumbai, Maharashtra, India Capgemini Full timeJob DescriptionAs a SIEM Specialist at Capgemini, you will play a critical role in developing and refining our Security Information and Event Management (SIEM) content.The ideal candidate will have an in-depth understanding of security concepts and be able to create SIEM rules to detect given scenarios.You will work closely with the team to ensure effective...
-
SIEM Security Engineer
7 days ago
Mumbai, Maharashtra, India Tata Consultancy Services Full timeJob DescriptionGreetings, we are seeking a highly skilled Siem Security Engineer for our team in Mumbai. As a SIEM Security Engineer, you will be responsible for designing, implementing, and managing security information and event management systems to protect our network from cyber threats.We require 6+ years of experience in SIEM technology, with expertise...
-
Security Operations Center Administrator
3 months ago
Mumbai, India Caenix Full timeJob Description :- Excellent understanding and proven hands-on experience in SIEM/SOAR concepts such as correlation, aggregation, normalization, parsing, playbooks, layouts- Experience with deploying and managing a large SIEM/SOAR environment- Develop, implement, and manage execution of standard procedures for the administration, content management, change...
-
Security Operations Center Administrator
2 weeks ago
Mumbai, India Caenix Full timeJob Description : - Excellent understanding and proven hands-on experience in SIEM/SOAR concepts such as correlation, aggregation, normalization, parsing, playbooks, layouts - Experience with deploying and managing a large SIEM/SOAR environment- Develop, implement, and manage execution of standard procedures for the administration, content management,...
-
Siem Admin L3
2 months ago
Mumbai, Maharashtra, India IBM Full timeIntroduction Your Role and Responsibilities - Responsible for implementation partner to see project on track along with providing required reports to management and client - Handle the project as well as BAU operations while ensuring high level of systems security compliance - Coordinate with and act as an authority to resolve incidents by working with...
-
Black Box
2 months ago
Mumbai, India BLACK BOX NETWORK SERVICES INDIA PRIVATE LIMITED Full timeRole : Permenant. Location : Airoli ,Mumbai. Experience : 4-8 years. - Conduct in-depth, real-time analysis of security alerts and incidents, correlating multiple data sources to identify potential threats and vulnerabilities. - Employ advanced threat-hunting techniques, leveraging behavioral analytics and machine learning to uncover hidden threats...
