Siem Platform Admin

3 days ago

Bengaluru Karnataka, India Phygital Insights Full time

Full time
- |
- Work From Office
- This Posotion is Currently Open

**Department / Category**:
**ADMIN**
- Listed on

**Work Location**:
**BANGALORE**

**Job Descritpion of SIEM Platform Admin**:
7+ Years Relevant Experience
- Create innovative solutions to automate and reduce timeframes for operational changes and initial installation of the platform.
- Responsible for major SIEM client environmental changes, including upgrades.
- Custom parser development. Should have good Regex skills.
- Threat detection use-case designing, implementation and fine-tuning.
- Create rules/dashboards for compliance and audit requirements.
- Security monitoring experience with one or more SIEM technologies (Like QRadar, Splunk, Sentinel, Securonix ArcSight, Sumologic, FortiSIEM, Alien Vault,etc).
- Strong understanding of security incident management, malware management and vulnerability management processes.
- Strong understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP.
- Strong technical knowledge of Internet security, networking protocols, and related technologies including IDS/IPS, firewalls, content filtering, and packet inspection.
- Working knowledge of PowerShell or Python.
- Experience with Linux and Unix operating systems.
- Working knowledge of the industry models such as the Cyber Kill Chains, Diamond Model and MITRE ATT&CK framework.

**Primary Skill**:

- Enterprise SIEM Architect exposure. Multiple SIEM deployment experience. SOC Domain Specialized.
- Excellent knowledge of one of the SIEM products Qradar Sentinel, Splunk, ArcSight, etc.
- Excellent understanding and proven hands-on experience in SIEM concepts such as correlation, aggregation, normalization, and parsing.
- Experience with Incident response and Security Operations Center operations.
- Experience with deploying and managing a large SIEM deployment.
- XXX years of experience with Securonix, Splunk, ArcSight, QRadar, Sentinel SIEM systems.
- Excellent knowledge of adversary tactics, techniques and procedures (TTPs) and MITRE ATT & ACK Framework.
- Excellent understanding of regular expressions, development of custoM/Flex Parsers.
- Excellent Python and Unix Shell scripting skills.
- Knowledge on overall GCP, AWS, Azure Cloud infrastructure.
- Solid understanding of events, related fields in log records and alerts reported by various data sources such as Windows/Unix systems, IDS/IPS, AV, HIDS/HIPS, WAFs, firewalls, and web proxies.
- Excellent understanding of log flow from numerous services within GCP, AWS, Azure cloud and experience with integrating them with 3rd party logging tools including but not limited to Splunk, Qradar, ArcSight, Sentinel, Sumologic and Elastic Cloud.
- Good Experience with syslog-ng i.e., configuring complex multi client-server infrastructures.
- 5+ years of network security and system security experience, supporting security event management tools (SIEMs).
- Excellent understanding of cybersecurity operations, Incident Response processes.
- Excellent communication skills.
- Good understanding of networking concepts.
- Experience interpreting, searching and manipulating data within enterprise logging solutions (e.g. SIEM, IT Service Management (ITSM) tools, workflow, and automation).
- In-depth knowledge of security data logs and an ability to create new content on advanced security threats on a need basis as per Threat Intelligence.
- Ability to identify gaps in the existing security controls.
- Good experience in writing queries/rules/use cases for security analytics (ELK, Splunk or any other SIEM platform) and deployment of content.

**Secondary Skills**:

- Domain experience of Network Security and Cloud Security.
- Security certifications such as CISSP, CEH, Security+.
- Preferred experience developing SIEM strategies and implementing these strategies in a global organization.
- 3-4 years previous SIEM engineering experience.
- Detail-oriented with strong organizational and analytical skills.
- Good knowledge of IT, including multiple operating systems and system administration skills.
- Good to have certifications: Network Security certification, security plus, CISA, CISSP.

**Required Skills for SIEM Platform Admin Job**:
**SIEM Architect**

**SIEM products Qradar Sentinel**

**Splunk**

**ArcSight**

**SOC**

**Azurem GCP**

**AWS**

**Python and Unix Shell scripting**

**Network Security and Cloud Security**

**Our Hiring Process**:

- ** Screening (HR Round)**
- ** Technical Round 1**
- ** Technical Round 2**
- ** Final HR Round

  • SIEM Securonix Admin

    3 weeks ago

    Bengaluru, India Tata Consultancy Services Full time

    Greetings,TCS is hiring for SIEM Securonix AdminLocation: BengaluruExperience: 5-10 years

  • SIEM Securonix Admin

    3 weeks ago

    Bengaluru, India Tata Consultancy Services Full time

    Greetings,TCS is hiring for SIEM Securonix AdminLocation: BengaluruExperience: 5-10 years

  • SIEM Securonix Admin

    3 weeks ago

    Bengaluru, India Tata Consultancy Services Full time

    Greetings,TCS is hiring for SIEM Securonix AdminLocation: BengaluruExperience: 5-10 years

  • SIEM Securonix Admin

    3 weeks ago

    Bengaluru, India Tata Consultancy Services Full time

    Greetings, TCS is hiring for SIEM Securonix Admin Location: Bengaluru Experience: 5-10 years

  • Cybersecurity Engineer

    4 weeks ago

    Bengaluru, Karnataka, India Thomson Reuters Full time

    About the RoleIn this exciting opportunity as a Cybersecurity Engineer, you will be responsible for ensuring the stability and security of our Splunk and Enterprise Security SIEM platform. This role is critical to identifying and remediating potential threats and defects, as well as collaborating with our SOC, CIRT, Threat Detection, and Cyber Intel teams to...

  • Splunk admin

    7 days ago

    Bengaluru, India Tata Consultancy Services Full time

    Job Title: Splunk AdminYears of experience: 3-15yrsWalk in date: 14 -Dec (Saturday)Timings: 9 AM-1 PMInterview Location: Tata Consultancy Services, Think campus, Phase 2, Electronic City, Bengaluru, Karnataka 560100Engineer, implement & support SIEM platforms Arc Sight, Splunk Enterprise, Splunk Enterprise Security, Splunk UBEA and Splunk Phantom in...

  • SIEM Specialist

    11 hours ago

    Bengaluru, Karnataka, India CareerXperts Consulting Full time

    Job Title:SIEM SpecialistAbout the Role:We are seeking an experienced SIEM Specialist to design, implement, and maintain a robust SIEM infrastructure based on Microsoft Sentinel.Key Responsibilities:Design and Implement SIEM Architecture: Design and implement a robust SIEM architecture to support business needs.Develop and Optimize SIEM Rules: Develop and...

  • SIEM Engineeer

    2 months ago

    Bengaluru, India ScaleneWorks Full time

    "Essential Job Functions:- • Individuals at this job are responsible for managing SIEM infrastructure like Microsoft Azure Sentinel and / or other SIEMs • Working knowledge of Microsoft Azure cloud platform, log analytics workspaces. • Excellent knowledge of KQL (Kusto Query Language). • Writing SIEM rules (Cross device and complex correlation) to...

  • Splunk Admin

    1 week ago

    Bengaluru, India Tata Consultancy Services Full time

    Job Title: Splunk AdminYears of experience: 3-15yrsWalk in date: 14-Dec (Saturday)Timings: 9AM-1PMInterview Location: Tata Consultancy Services, Think campus, Phase 2, Electronic City, Bengaluru, Karnataka 560100Engineer, implement & support SIEM platforms ArcSight, Splunk Enterprise, Splunk Enterprise Security, Splunk UBEA and Splunk Phantom in public cloud...

  • Splunk Admin

    1 week ago

    Bengaluru, India Tata Consultancy Services Full time

    Job Title: Splunk AdminYears of experience: 3-15yrsWalk in date: 14-Dec (Saturday)Timings: 9AM-1PMInterview Location: Tata Consultancy Services, Think campus, Phase 2, Electronic City, Bengaluru, Karnataka 560100Engineer, implement & support SIEM platforms ArcSight, Splunk Enterprise, Splunk Enterprise Security, Splunk UBEA and Splunk Phantom in public cloud...

  • Senior SIEM Engineer

    6 months ago

    Bengaluru, India Thomson Reuters Full time

    Senior SIEM Engineer: The Information Security and Risk Management (ISRM) organization is seeking a Senior SIEM Engineer to join our growing SIEM & Cyber Fusion Engineering team. This candidate will join a team in managing a large enterprise deployment of Splunk and Enterprise Security and partnering with our SOC, CIRT, Threat Detection, and Cyber Intel...

  • SIEM Chronicle Engineer

    1 month ago

    Bengaluru, Karnataka, India Buxton Consulting (INDIA) Private Limited Full time

    About the RoleAs a SIEM Chronicle Engineer at Buxton Consulting (INDIA) Private Limited, you will play a critical role in managing and providing SIEM Chronicle health and operational support. This includes supporting architecture changes, tool deployments, and advanced detection engineering.Key ResponsibilitiesSIEM Management: Manage and provide SIEM...

  • Senior SIEM Engineer

    6 months ago

    Bengaluru, India Thomson Reuters Full time

    About the Role In this opportunity as Sr SIEM Engineer, you will: Be responsible for monitoring and stability of Splunk, and Enterprise Security SIEM platform Embed automation into the deployment and management of the infrastructure and application Identify and remediate of SIEM application defects / process failures Onboard new application and...

  • SIEM Security Engineer

    1 month ago

    Bengaluru, Karnataka, India Buxton Consulting (INDIA) Private Limited Full time

    Job Title: SIEM Security EngineerJob Overview:We are seeking a highly skilled SIEM Security Engineer to join our team at Buxton Consulting (INDIA) Private Limited. As a SIEM Security Engineer, you will be responsible for managing and providing SIEM health and operational support, including supporting architecture changes, tool deployments, and advanced...

  • Sentinel Admin Siem 03 to 09 Years Pan India

    6 months ago

    Bengaluru, Karnataka, India Capgemini Full time

    **Job Description**: - **Good knowledge of SIEM, SIEM Architecture and Hybrid Integrations.** - **Expertise with Azure Sentinel, creating/deploying Analytics Rules, Playbooks, Workbooks, Logic Apps, Log Analytics, Key Vault, IAM, Azure AD, etc** - **Good Knowledge of Azure DevOps & GitHub, Familiarity with GitHub, Jenkins and CI/CD pipelines.** -...

  • Security Ops Admin

    2 months ago

    Bengaluru, Karnataka, India HackerRank Full time

    At HackerRank, we help over 2,500 of the most prestigious logos across industries find, hire and upskill amazing developer talent using our SaaS-based Developer Skills Platform. We pioneered and continue to lead the developer skills market. At HackerRank, we are passionate about our mission to "**Change the world to value skills over pedigree"**. This...

  • SIEM Content Management Strategist

    1 week ago

    Bengaluru, Karnataka, India Orbus International Full time

    About the RoleWe are seeking a highly skilled SIEM Content Management Strategist to oversee the design, development, and implementation of security information and event management (SIEM) solutions. The ideal candidate will have strong expertise in SIEM platforms, content creation, and threat detection techniques to enhance our organization's security...

  • CyberProof - QRadar Use Case Management Engineer - SIEM Platform

    3 weeks ago

    Bengaluru, India CyberProof Full time

    Role : QRadar Use Case Management EngineerAbout Us :CyberProof is a cyber security services and platform company whose mission is to help our customers react faster and smarter - and stay ahead of security threats, by creating secure digital ecosystems. CyberProof automates processes to detect and prioritize threats early and respond rapidly and...

  • SIEM Content Management Lead

    1 week ago

    Bangalore/Bengaluru, Karnataka, India Orbus International Full time

    We are looking for a highly skilled SIEM Content Management Lead to oversee the design, development, and implementation of security information and event management (SIEM) solutions. The ideal candidate will have strong expertise in SIEM platforms, content creation, and threat detection techniques to enhance the organization's security monitoring and...

  • SIEM Securonix Security Operations Specialist

    1 week ago

    Bengaluru, Karnataka, India Tata Consultancy Services Full time

    Greetings, Tata Consultancy Services (TCS) is hiring for a SIEM Securonix Admin.With 5-10 years of experience in the field, this role requires exceptional skills to monitor and analyze security-related data from various sources, ensuring the organization's security posture remains robust.The successful candidate will be responsible for implementing,...