Siem Admin
3 weeks ago
Delivery ManagementBangalorePosted On
- 05 Feb 2024
- Required Experience
- 3 - 6 Years
- Share
Apply
- Basic SectionGrade
L4A
Designation
Senior Software Engineer
Shift Details
Day C (12:00 PM-9:00 PM)
- OrganisationalCountry
India
City
Bangalore
- SkillsSkill
Education Qualification
No data available
CERTIFICATION
No data available
- Job DescriptionResponsibilities:
- Having good knowledge on SIEM, FIM, IPS, Network devices and TCP/IP model, Ports
and Incident analysis.
- Review of daily health Check of SIEM and their components.
- Data Archiving and backup and data purging as per need and compliance.
- Raising Change management tickets for SOC Admin activities and incidents at ticketing tool.
- Helping L2 with required knowledge base details and basic documentation.
- Co-ordination with SOC Monitoring team on troubleshooting issues and highlighting it to L2 & L3 for further resolution and escalation.
- High ethics, ability to protect confidential information.
- Also, creation of active channels, reports, lists, filters, modifying the rules (fair knowledge) and dashboard.
- Update and maintain SOC knowledge base for new security incidents and docs.
- Creation of daily status report sheet and submit to SOC Admin lead for review.
- Troubleshooting non-reporting devices and maintain device status reporting
- Troubleshooting issues occurred on daily health check & system notifications
- Creating change request tickets for SOC admin activities, issues and incidents.
Skills Required
- . UNIX OS Administration- TCP/IP (possesses fundamentals such as the various OSI layers)
- routing protocols and technologies
- security technologies and best practices (FW/IDS/IPS/DB)
- Windows/Unix-specific networking
- proficiency with SIEM tools like QRadar,Splunk and/or ArcSight
- English: fluent or intermediate
- Experience expected:
- minimum 2 years of experience in IT Security
- minimum 1 year of experience with supported technology (QRadar,Splunk and/or ArcSight)
- education / certifications: Bachelor's Degree or equivalent
- preferably (will be an advance) one or more professional certifications such as:
- CompTIA Linux+
- RHCSA, RHCE, CCNA, CEH, MCSE, CISSP
-
Splunk Admin
4 weeks ago
Bengaluru, India Tenet Computer and Communication Pvt Ltd Full timeDesignation - Splunk Admin Experience - 4-6 yrs Location - Pune, Bangalore Notice Period - 20 days Roles - Engineer, implement & support SIEM platforms ArcSight, Splunk Enterprise, Splunk Enterprise Security, Splunk UBA and Splunk Phantom in public cloud and on-premise datacenters - Incident & Problem Management, Change & Release Management, Vendor...
-
Siem Security Architect
1 month ago
Bengaluru, Karnataka, India Harman International Full timeLocation: - IN_Bangalore_EOIZ Indust Area Campus_HCS - Additional Location: - Bangalore, India - Job Family: - Digital - Worker Type Reference: - Regular - Permanent - Pay Rate Type: - Salary - JOB ID: - R-33261-2024 **Description & Requirements**: JD: Cloud security Architect / Lead - 12 B - Lead And design Solutions according to customer need and...
-
Qradar Admin 6 to 9 Years Bengaluru, Chennai
4 weeks ago
Bengaluru, India Capgemini Full timeQradar SME Experience, Build and continuously improve SOC analytics framework. - Ensure effective designing and implementation of SIEM content filters rules expressions and other identification mechanisms of the threat and vulnerability management technologies used within the SOC Mentor and guide the First Level. - Security Analysts Provides professional...
-
Qradar Admin 4 to 6 Years Bengaluru, Pune
4 weeks ago
Bengaluru, India Capgemini Full timeProvide superior technical security expertise to ensure that the Security Operations Centre (SOC) is always delivering a professional service to its customers - Conduct detailed analytical queries and investigations, identify areas that require specific attention, identify indicators of compromise (IOC) or events of interest (EOI) that need further...
-
Splunk Admin 4 to 9 Years Pan India
1 month ago
Bengaluru, India Capgemini Full timeMust have Splunk admin OR development knowledge OR experience on Splunk Enterprise Security- - Creative and analytical problem solving skills individually and in a group environment- - Good knowledge and experience of Security Monitoring tools- - Good knowledge and experience of Cyber Incident Response- - Good knowledge and experience of Cyber Threat...
-
Splunk Admin 4 to 9 Years Pan India
1 month ago
Bengaluru, India Capgemini Full timeMust have Splunk admin OR development knowledge OR experience on Splunk Enterprise Security - Creative and analytical problem solving skills individually and in a group environment - Good knowledge and experience of Security Monitoring tools - Good knowledge and experience of Cyber Incident Response - Good knowledge and experience of Cyber Threat...
-
Qradar Admin 6 to 9 Years Pan India
4 weeks ago
Bengaluru, India Capgemini Full time**Job Description**: - **Good knowledge of SIEM/QRadar Architecture, SIEM health check.**: - **Deployment of SIEM in customer environment**: - **Troubleshooting of SIEM issues, and SOC tools.**: - **Backup and restore, purging, SIEM configurations as per need and compliance.**: - **SIEM upgrade, patch, onboarding log sources, etc.**: - **Raising change...
-
Qradar Admin 6 to 9 Years Pan India
4 weeks ago
Bengaluru, India Capgemini Full timeGood knowledge of SIEM/QRadar Architecture, SIEM health check. - Deployment of SIEM in customer environment - Troubleshooting of SIEM issues, and SOC tools. - Backup and restore, purging, SIEM configurations as per need and compliance. - SIEM upgrade, patch, onboarding log sources, etc. - Raising change management tickets for SOC Administration activities. -...
-
Sentinel Admin 04 to 12 Years Pan India
1 month ago
Bengaluru, India Capgemini Full time**Job Description**: - Good knowledge of SIEM, SIEM Architecture and Hybrid Integrations. - Expertise with Azure Sentinel, creating/deploying Analytics Rules, Playbooks, Workbooks, Logic Apps, Log Analytics, Key Vault, IAM, Azure AD, etc - Good Knowledge of Azure DevOps & GitHub, Familiarity with GitHub, Jenkins and CI/CD pipelines. - Experience in Query...
-
Sentinel Admin 04 to 12 Years Pan India
1 month ago
Bengaluru, India Capgemini Full timeGood knowledge of SIEM, SIEM Architecture and Hybrid Integrations. - Expertise with Azure Sentinel, creating/deploying Analytics Rules, Playbooks, Workbooks, Logic Apps, Log Analytics, Key Vault, IAM, Azure AD, etc - Good Knowledge of Azure DevOps & GitHub, Familiarity with GitHub, Jenkins and CI/CD pipelines. - Experience in Query language such as SQL or...
-
Dlp Lead
4 weeks ago
Bengaluru, India Nityo Infotech Full timeC , Linux , Management , Unix , Windows , API , Ability , Access , Activities , Admin , Analyse , Automation , Based , C , Capability , Classification , Client , Commissioning , Compliance , Cyber , Cyber Security , DLP , Data , Data Classification , Delhi , Efficiency , Email , Escalation , Exceptions , External , Generate , Heads , IAM , III , IX ,...
-
Splunk Admin 4 to 9 Years Pan India
1 month ago
Bengaluru, India Capgemini Full timeRoles and Responsibilities - Review alerts triggered from insider risk, data loss and UEBA consoles and determining if the risk is real or normal work. - Perform ad-hoc searches using Security Incident and Event Management (SIEM) (Splunk) Dashboards - Create/Maintain dashboards in Splunk for high level insights into the program. - Create reports of insider...
-
Network Security Admin
1 month ago
Bengaluru, India vijiksha Technologies.com Full timeExperience Requirements: Minimum 5-8 years or more of progressive, relevant experience and proven capability to work in a complex network environment Required technical skill set - 1) Firewall / NGFW* a) Checkpoint, Palo Alto - Must have b) Azure firewall - Must have c) Fortinet - Good to have 2) Public Cloud* a) Microsoft Azure / AWS / GCP - Must have...
-
Dlp Lead
1 month ago
Bengaluru, India Nityo Infotech Full timeC , Linux , Management , Unix , Windows , API , Ability , Access , Activities , Admin , Analyse , Automation , Based , C , Capability , Classification , Client , Commissioning , Compliance , Cyber , Cyber Security , DLP , Data , Data Classification , Delhi , Efficiency , Email , Escalation , Exceptions , External , Generate , Heads , IAM , III , IX ,...
-
L3 SOC Manager
1 month ago
Bengaluru, India VIDPRO CONSULTANCY SERVICES Full timeAbout the job:We are looking for a highly experienced information security professional to help leading one of the clusters of Synergistic Security Operation Center to monitor security alerts, respond and remediate detected issues, and work with the Incident Management process to remove threats and vulnerabilities within the organization and to assist the...
-
Cybersecurity IT Architect
3 weeks ago
Bengaluru, India Alstom Full timeReq ID:439921We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community...
-
Manager - IT & Infrastructure
1 month ago
Bengaluru, India HealthifyMe Full timeSummary: We are seeking an experienced and motivated IT Managerto join our startup team. In this role, you will oversee and ensure the smoothand efficient operation of our company's IT department, including a team of 3,while directly coordinating with the founding team to articulate IT needs andcontribute to business goals. Responsibilities: Oversee...
-
Cyber Security Engineer
3 weeks ago
Bengaluru, India Spigot Software Pvt Ltd Full time[Finar by Actylis]: Cyber Security (Drive) Responsibilities :Develop and Implement Security Policies :- The cyber security manager is responsible for formulating and implementing comprehensive security policies and procedures that align with the organization's goals and regulatory requirements.- This includes creating incident response plans, conducting...
-
Product Security Engineer
4 weeks ago
Bengaluru, India Autodesk Full timePosition OverviewOur Security Observability framework provides centralized visibility across Autodesk that enables us to better secure our Infrastructure and data. We are looking for an experienced Security Engineer who can design, build, engineer and mature our Security Observability/Logging framework and data engineering pipelines supporting Security...
-
Netwitness Product Operations Sr Engineer
2 days ago
Bengaluru, India RSA Security Full timeThe RSA NetWitness Platform provides pervasive visibility across a modern IT infrastructure, enabling better and faster detection of security incidents, with full automation and orchestration capabilities to investigate and respond efficiently. RSA NetWitness Platform takes security “beyond SIEM,” extending the traditional log-centric,...