SIEM Administrator
2 months ago
Job Description :
- Should have strong knowledge in MS Sentinel SIEM engineering and administrative activities.
- Should have performed SIEM engineering role more than 4+ years. Problem solving & People management skills are required.
- Should have expertise in building custom analytical rules, tuning of analytical rules, building automation through Azure logic apps, management of entire product feature, end to end configuration.
- Should have expertise in forming KQL queries and functions for complex detection and monitoring requirements.
- Should have strong knowledge in MITRE attack framework and expertise in developing analytical rules and custom dashboards/workbooks across framework.
- Should have expertise in log management, retentions, maintenance of logs at low cost, performing access management, developing new custom dashboard based on different requirements.
- Should have proven record of implementing Sentinel advanced features, efficient log collection mechanisms, deployment and maintenance of log forwarders, maintenance of local agents.
- Leverage Threat Intelligence feeds in Sentinel analytics and SOAR
- Good to have proficiency in Linux, Python, PowerShell
- Should have expertise in integrating data sources which are not supported by Sentinel tool.
- Custom parser development and ability to solve technical issues in Sentinel are must have requirements.
- Should have expertise in consuming contents from content hub and management of log analytics workspace and ability to handle issues in MMA and AMA agents.
- Preference will be given for candidates completed Sentinel Ninja Level 400 Training and Certification.
- Good to have strong knowledge in Microsoft defender products, Microsoft Cloud services and Azure Arc.
- Should have ability to work with vendor technical support group and driving issues towards effective and permanent closure.
Preferred Skills : Azure Sentinel, Integration, Parser.
-
Siem Administrator
5 hours ago
Mumbai, India Renovision Automation Services Pvt. Ltd Full time**Location - Kandivali, Mumbai** **Position Overview**: We are seeking a highly skilled and motivated SIEM (Security Information and Event Management) Platform Administrator to join our team. As a SIEM Platform Administrator, you will be responsible for the administration, maintenance, and optimization of our organization's SIEM platform. you will play a...
-
Intern - Siem Administrator - Soc
2 months ago
Mumbai, India Network Intelligence Full time**Designation**: Intern - SIEM Administrator - SOC **Job Code**: HR1185 **Location**: Mumbai - Maintain SIEM operations and document current environment. - Work with external teams to ensure all necessary logging sources are reporting to the SIEM. - Creation of technically detailed reports on the status of the SIEM to include metrics on items such as...
-
SOC Administrator
4 weeks ago
Mumbai, India Panchjanya HR Services Full timeJob Description :Responsibilities :- Align with internal & external needs, threat trends, and operational performance to identify opportunities for improvement/enhancement of the security operations center technologies and integrations.- Perform system administration for SIEM, SOAR, EDR and ancillary devices.- Develop, implement, and execute standard...
-
SOC Administrator
4 weeks ago
Mumbai, Maharashtra, India Panchjanya HR Services Full timeJob Description :Responsibilities :- Align with internal & external needs, threat trends, and operational performance to identify opportunities for improvement/enhancement of the security operations center technologies and integrations.- Perform system administration for SIEM, SOAR, EDR and ancillary devices.- Develop, implement, and execute standard...
-
SOC Administrator
3 weeks ago
mumbai, India Panchjanya HR Services Full timeJob Description : Responsibilities :- Align with internal & external needs, threat trends, and operational performance to identify opportunities for improvement/enhancement of the security operations center technologies and integrations.- Perform system administration for SIEM, SOAR, EDR and ancillary devices.- Develop, implement, and execute standard...
-
Azure Sentinal Siem Expert
2 months ago
Mumbai, India CIEL HR Services Full timeHi, total years of exp: 4+ Years Location: Pan India 1.Min 2 yrs Experience with Azure Sentinel SIEM platform 2 Experience in Regex 3 Experience and proficient Kusto Query Language(KQL) 4 Experience in Mitre Attack framework (any other security Framework, do specify) 4 Minimum 4 years’ experience in a similar role 5 Preferred SIEM vendor...
-
Security Administrator
3 weeks ago
Mumbai, India Black Box Full timeWe are looking for a Security Administration Engineer professional. This position includes security platform stability and health, system capacity monitoring, diagnosing and resolving security platform issues in partnership with the respective stakeholders within Black Box and customer organization and 3rd Party Providers. Essential...
-
SOC Implementation Consultant
4 weeks ago
Mumbai, India Panchjanya HR Services Full time- Having good knowledge on SIEM, FIM, IPS, Network devices and TCP/IP model, Ports and Incident analysis.- Good verbal/written communication skills. Review of daily health Check: LogRhythm, QRadar and their components.- Data Archiving and backup and data purging as per need and compliance.- Evidence collection for audits and documentation of all activities...
-
SOC Implementation Consultant
3 weeks ago
mumbai, India Panchjanya HR Services Full time- Having good knowledge on SIEM, FIM, IPS, Network devices and TCP/IP model, Ports and Incident analysis.- Good verbal/written communication skills. Review of daily health Check: LogRhythm, QRadar and their components.- Data Archiving and backup and data purging as per need and compliance.- Evidence collection for audits and documentation of all activities...
-
SOC Implementation Consultant
1 week ago
Mumbai, Maharashtra, India Panchjanya HR Services Full time- Having good knowledge on SIEM, FIM, IPS, Network devices and TCP/IP model, Ports and Incident analysis.- Good verbal/written communication skills. Review of daily health Check: LogRhythm, QRadar and their components.- Data Archiving and backup and data purging as per need and compliance.- Evidence collection for audits and documentation of all activities...
-
SOC Implementation Consultant
7 days ago
Mumbai, India Panchjanya HR Services Full time- Having good knowledge on SIEM, FIM, IPS, Network devices and TCP/IP model, Ports and Incident analysis.- Good verbal/written communication skills. Review of daily health Check: LogRhythm, QRadar and their components.- Data Archiving and backup and data purging as per need and compliance.- Evidence collection for audits and documentation of all activities...
-
SOC Implementation Consultant
4 weeks ago
Mumbai, Maharashtra, India Panchjanya HR Services Full time- Having good knowledge on SIEM, FIM, IPS, Network devices and TCP/IP model, Ports and Incident analysis.- Good verbal/written communication skills. Review of daily health Check: LogRhythm, QRadar and their components.- Data Archiving and backup and data purging as per need and compliance.- Evidence collection for audits and documentation of all activities...
-
SOC Implementation Consultant
1 week ago
Mumbai, India Panchjanya HR Services Full time- Having good knowledge on SIEM, FIM, IPS, Network devices and TCP/IP model, Ports and Incident analysis.- Good verbal/written communication skills. Review of daily health Check: LogRhythm, QRadar and their components.- Data Archiving and backup and data purging as per need and compliance.- Evidence collection for audits and documentation of all activities...
-
Security Administrator
1 month ago
mumbai, India Black Box Full timeWe are looking for a Security Administration Engineer professional. This position includes security platform stability and health, system capacity monitoring, diagnosing and resolving security platform issues in partnership with the respective stakeholders within Black Box and customer organization and 3rd Party Providers.Essential Responsibilities:Knowledge...
-
Security Administrator
1 month ago
mumbai, India Black Box Full timeWe are looking for a Security Administration Engineer professional. This position includes security platform stability and health, system capacity monitoring, diagnosing and resolving security platform issues in partnership with the respective stakeholders within Black Box and customer organization and 3rd Party Providers. Essential Responsibilities: ...
-
Security Administrator
1 month ago
Mumbai, India Black Box Full timeWe are looking for a Security Administration Engineer professional. This position includes security platform stability and health, system capacity monitoring, diagnosing and resolving security platform issues in partnership with the respective stakeholders within Black Box and customer organization and 3rd Party Providers.Essential Responsibilities:...
-
Security Administrator
1 month ago
Mumbai, India Black Box Full timeWe are looking for a Security Administration Engineer professional. This position includes security platform stability and health, system capacity monitoring, diagnosing and resolving security platform issues in partnership with the respective stakeholders within Black Box and customer organization and 3rd Party Providers.Essential Responsibilities:...
-
Senior SIEM Consultant
2 weeks ago
mumbai, India Securonix Full timeSecuronix is leading the evolution of SIEM for today’s hybrid cloud, data-driven enterprises. Securonix Unified Defense SIEM provides organizations with content-driven threat detection, investigation, and response (TDIR) solution built with a highly scalable data cloud and a unified experience from the analyst to the CISO. The innovative cloud-native...
-
Senior SIEM Consultant
1 week ago
mumbai, India Securonix Full timeSecuronix is leading the evolution of SIEM for today’s hybrid cloud, data-driven enterprises. Securonix Unified Defense SIEM provides organizations with content-driven threat detection, investigation, and response (TDIR) solution built with a highly scalable data cloud and a unified experience from the analyst to the CISO. The innovative cloud-native...
-
Senior SIEM Consultant
2 weeks ago
mumbai, India Securonix Full timeSecuronix is leading the evolution of SIEM for today’s hybrid cloud, data-driven enterprises. Securonix Unified Defense SIEM provides organizations with content-driven threat detection, investigation, and response (TDIR) solution built with a highly scalable data cloud and a unified experience from the analyst to the CISO. The innovative cloud-native...