SIEM Engineer
1 week ago
1. Should have strong knowledge in Microsoft Sentinel SIEM engineering activities.
2. Should have performed SIEM engineering role more than 5 years.
3. Should have expertise in building custom analytical rules, tuning of analytical rules, building automation through logic apps, management of entire product feature, end to end configuration/administration.
4. Should have expertise in forming KQL queries and functions for complex detection and monitoring requirements.
5. Should have strong knowledge in MITRE attack framework and expertise in developing detections across framework.
6. Should have expertise in log management, retention configurations, maintenance of logs at low cost, performing access management, developing new custom dashboard based on different requirements.
7. Should have proven record of implementing Sentinel advanced features, efficient log collection mechanisms, deployment and maintenance of log forwarders, maintenance of local agents.
8. Should have expertise in integrating data sources which are not supported by Sentinel tool OOB. Custom parser development and ability to solve technical issues in Sentinel.
9. Should have ability to prepare and maintain policy and procedure documentations around SIEM technology, document life cycle management skill is required.
10. Should have expertise in consuming contents from content hub and management of log analytics workspace and ability to handle issues in MMA and AMA agents. (Hands-on in migrating agents from MMA to AMA will be added advantage)
11. Should have knowledge and experience in data transformation rules and data collection rules concepts in Sentinel.
12. Should have proven record of participation in customer or client reviews or global certifications regarding security controls in SIEM. Compliance and regulatory requirements understandings are good to have.
13. Should have ability to work with stakeholders to solve technical issues and must support and deliver complex business, security, and operational requirements.
14. Should have ability to work with vendor technical support group and driving issues towards effective and permanent closure.
15. Preference should be given for candidates completed expert training and certifications in Sentinel and Defender products of Microsoft.
16. Good to have strong knowledge in Microsoft Sentinel pricing, Microsoft defender products, Microsoft Cloud services and Azure Arc.
Primary Location Gurgaon, Haryana, India Other Locations
Hyderabad, Andhra Pradesh, India
Job Description:
1. Should have strong knowledge in Microsoft Sentinel SIEM engineering activities.
2. Should have performed SIEM engineering role more than 5 years.
3. Should have expertise in building custom analytical rules, tuning of analytical rules, building automation through logic apps, management of entire product feature, end to end configuration/administration.
4. Should have expertise in forming KQL queries and functions for complex detection and monitoring requirements.
5. Should have strong knowledge in MITRE attack framework and expertise in developing detections across framework.
6. Should have expertise in log management, retention configurations, maintenance of logs at low cost, performing access management, developing new custom dashboard based on different requirements.
7. Should have proven record of implementing Sentinel advanced features, efficient log collection mechanisms, deployment and maintenance of log forwarders, maintenance of local agents.
8. Should have expertise in integrating data sources which are not supported by Sentinel tool OOB. Custom parser development and ability to solve technical issues in Sentinel.
9. Should have ability to prepare and maintain policy and procedure documentations around SIEM technology, document life cycle management skill is required.
10. Should have expertise in consuming contents from content hub and management of log analytics workspace and ability to handle issues in MMA and AMA agents. (Hands-on in migrating agents from MMA to AMA will be added advantage)
11. Should have knowledge and experience in data transformation rules and data collection rules concepts in Sentinel.
12. Should have proven record of participation in customer or client reviews or global certifications regarding security controls in SIEM. Compliance and regulatory requirements understandings are good to have.
13. Should have ability to work with stakeholders to solve technical issues and must support and deliver complex business, security, and operational requirements.
14. Should have ability to work with vendor technical support group and driving issues towards effective and permanent closure.
15. Preference should be given for candidates completed expert training and certifications in Sentinel and Defender products of Microsoft.
16. Good to have strong knowledge in Microsoft Sentinel pricing, Microsoft defender products, Microsoft Cloud services and Azure Arc.
-
SIEM Engineer
1 week ago
Gurugram, India Virtusa Full timeSIEM Engineer - CREQ Description Job Description: 1. Should have strong knowledge in Microsoft Sentinel SIEM engineering activities. 2. Should have performed SIEM engineering role more than 5 years. 3. Should have expertise in building custom analytical rules, tuning of analytical rules, building automation through logic apps, management of entire...
-
SIEM onboarding Engineer
2 weeks ago
Gurugram, Noida, India Oculus IT Full time ₹ 15,00,000 - ₹ 25,00,000 per yearRole & responsibilitiesWe are seeking a technically proficient SIEM Onboarding Engineer to support the integration of customer environments into our Inopli SIEM platform. The ideal candidate will have strong experience in Linux system administration (preferably LPIC-2 certified), Python scripting, and a solid understanding of network and infrastructure...
-
SIEM Architect Engineering Lead
3 weeks ago
Gurugram, India Outworx Solutions Full timeLevel: L3 The SIEM Engineering Manager is a senior leadership role within the Cyber Defense Center (CDC) responsible for the technical direction, operational governance, and delivery assurance of SIEM and SOAR capabilities. This role bridges engineering, automation, and AI innovation to support a self-driving, SLA-bound, and AI-augmented SOC. Lead a...
-
L3 Security Incident Analyst
4 weeks ago
Gurugram, India O A Compserve Pvt Ltd Full timeJob Title : L3 Security Incident AnalystLocation : Gurgaon, IndiaShift : Willingness to work in rotational shifts.Job Description : The L3 Security Incident Analyst is responsible for handling complex security incidents and leading incident response efforts. This role involves advanced threat analysis and strategy development to improve the organizations...
-
SOC Engineer
1 week ago
Gurugram, India NTT DATA Full timeJob Description Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive. Your day...
-
SOC Engineer
1 week ago
Gurugram, India NTT DATA Full timeJob Description Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive. Your day at...
-
Threat & Vulnerability Engineer
3 weeks ago
Gurugram, India Pegasus International Full timeAs a Security Engineer specializing in Threat Correlation and Tool Optimization, you will serve as the technical subject matter expert for improving the fidelity, prioritization, and integration of vulnerability data across a multi-cloud and hybrid enterprise environment. This role is focused on optimizing inputs from a wide range of scanning and detection...
-
Lead Consultant- SOC Automation engineer
1 week ago
Gurugram, India Genpact Full timeGenpact (NYSE: G) is a global professional services and solutions firm delivering outcomes that shape the future. Our 125,000+ people across 30+ countries are driven by our innate curiosity, entrepreneurial agility, and desire to create lasting value for clients. Powered by our purpose - the relentless pursuit of a world that works better for people - we...
-
Lead Consultant- SOC Automation engineer
1 week ago
Gurugram, India Genpact Full timeGenpact (NYSE: G) is a global professional services and solutions firm delivering outcomes that shape the future. Our 125,000+ people across 30+ countries are driven by our innate curiosity, entrepreneurial agility, and desire to create lasting value for clients. Powered by our purpose - the relentless pursuit of a world that works better for people - we...
-
System Engineer
3 weeks ago
Gurugram, India Decoding It Solutions Full timeWe are looking for a Cyber Security Engineer with around 5 years of experience to join our team. The candidate will work closely with customers to understand their requirements, suggest the right cybersecurity solutions, conduct proof-of-concepts (POCs), and implement products. This role focuses on solution design and deployment, not day-to-day operations....
