SIEM Engineering Lead

2 days ago


Bengaluru, Karnataka, India Resillion Full time

Job Title: SIEM Engineering Lead

About Resillion:

We are a Managed Security Service Provider (MSSP) dedicated to delivering exceptional cybersecurity solutions to our clients. Our team of experts is passionate about protecting our customers' assets and data from evolving threats.

Job Description:

We are seeking a highly skilled SIEM Engineering Lead to join our team. As a SIEM Engineering Lead, you will be responsible for providing leadership and supervision to our SOC Engineering team, ensuring tasks and projects are organized and completed to a high standard.

Key Responsibilities:

  • Deploy and configure Microsoft Sentinel solutions for our customers, in support of enabling our Managed SOC services.
  • Interact with customers and technical service leads to understand their business challenges and desired outcomes.
  • Develop technical solutions to automate repeatable tasks, including Sentinel Workbooks and Logic Apps.
  • Research, design, and implement cybersecurity solutions, including but not limited to the Microsoft Security stack.
  • Drive the review and update of client supporting documentation, such as cybersecurity policies, architectures, standards, and playbooks.
  • Conduct ongoing research around the threat landscape, including threat actors, TTPs, and develop analytical rules, IR actions, investigation strategies, and tooling.
  • Support the SOC Team in investigating and responding to client cybersecurity incidents, taking an active role in incident response management.
  • Ensure each customer's operational health is maintained and respond to all platform requests within agreed SLAs.
  • Liaise with Account Managers across the business and assist with the presentation of SOC Monitor technology demonstrations to both current and prospective customers.

Requirements:

  • Outstanding written and verbal communication skills in English, essential for effective collaboration and client engagement.
  • Substantial experience in a customer-facing role, effectively communicating with diverse stakeholder groups.
  • Demonstrated leadership in managing and guiding technical teams.
  • Extensive experience within a Managed Security Service Provider (MSSP) environment.
  • Advanced proficiency in SIEM, EDR, and EPP, with technical expertise in solutions including Microsoft Sentinel, Elastic, and CrowdStrike Falcon.
  • Expertise in creating, tuning, and managing SIEM analytical rules to optimize threat detection and response capabilities, ensuring the efficacy and efficiency of security monitoring systems.
  • A robust understanding of query and scripting languages, such as KQL, Python, PowerShell, and RegEx, enhancing operational efficiency.
  • Significant experience in leading responses to major security incidents.
  • Comprehensive knowledge of Windows, Linux, and cloud technologies, particularly Microsoft Azure and Office 365.
  • Proven ability in analyzing complex data, making strategic recommendations, and presenting findings to client and management teams as part of continuous service improvement initiatives.
  • Detailed understanding of attack vectors, skilled in distinguishing between normal and anomalous activities, and adept at recommending countermeasures and remediation strategies.
  • Experience collaborating with penetration testers and Red Team members in conducting Purple Teaming events.

Qualifications:

  • Degree in Computer Science, Information Security, or a related field – Must have.
  • SC-200 Microsoft Security Operations Analyst – Must have.
  • AZ-500 Microsoft Azure Security Technologies – Must have.
  • SC-100 Microsoft Cybersecurity Architect – Highly desirable.
  • CompTIA Security+ SY0-601 – Desirable.
  • Certified Ethical Hacker (CEH) – Desirable.
  • GIAC Security Essentials (GSEC) – Desirable.
  • GIAC Certified Incident Handler (GCIH) – Desirable.


  • Bengaluru, Karnataka, India Resillion Full time

    Job Title: SIEM Engineering LeadResillion is seeking a highly skilled SIEM Engineering Lead to join our team. As a key member of our Managed Security Services team, you will be responsible for leading the deployment and configuration of Microsoft Sentinel solutions for our customers.About the RoleThis is a challenging and rewarding role that requires a...

  • SIEM Engineer

    1 week ago


    Bengaluru, Karnataka, India ScaleneWorks Full time

    Job Title: SIEM EngineerAt ScaleneWorks, we are seeking a highly skilled SIEM Engineer to join our team. The successful candidate will be responsible for managing our SIEM infrastructure, including Microsoft Azure Sentinel and other SIEMs.Key Responsibilities:Manage SIEM infrastructure, including Microsoft Azure Sentinel and other SIEMs.Develop and implement...


  • Bengaluru, Karnataka, India Resillion Full time

    About the RoleWe are seeking a highly skilled and experienced SIEM Engineering Lead to join our team at Resillion. As a key member of our security operations team, you will be responsible for providing leadership and supervision to the SOC Engineering team, ensuring tasks and projects are organised and completed to a high standard.Key ResponsibilitiesDeploy...


  • Bengaluru, Karnataka, India Orbus International Full time

    Job Title: SIEM Content Management LeadJob Summary:We are seeking a highly skilled SIEM Content Management Lead to oversee the design, development, and implementation of security information and event management (SIEM) solutions. The ideal candidate will have strong expertise in SIEM platforms, content creation, and threat detection techniques to enhance the...


  • Bengaluru, Karnataka, India Thomson Reuters Full time

    About the RoleIn this exciting opportunity, you will play a critical role in ensuring the stability and security of our Splunk and Enterprise Security SIEM platform. As a seasoned SIEM Engineer, you will be responsible for monitoring and maintaining the platform, embedding automation into our infrastructure and application deployment, and identifying and...


  • Bengaluru, Karnataka, India Thomson Reuters Full time

    About the RoleAs a Senior SIEM Engineer at Thomson Reuters, you will be responsible for monitoring and stability of Splunk, and Enterprise Security SIEM platform. You will embed automation into the deployment and management of the infrastructure and application, identify and remediate SIEM application defects / process failures, onboard new application and...


  • Bengaluru, Karnataka, India Thomson Reuters Full time

    About the RoleThe Information Security and Risk Management (ISRM) organization at Thomson Reuters is seeking a Senior SIEM Engineer to join our growing SIEM & Cyber Fusion Engineering team. This candidate will collaborate with our SOC, CIRT, Threat Detection, and Cyber Intel functions to deliver capabilities to improve our ability to defend against cyber...

  • Data Engineer

    1 week ago


    Bengaluru, Karnataka, India Microland Full time

    Job SummaryMicroland is seeking a highly skilled Data Engineer - SIEM to join our team. As a Data Engineer - SIEM, you will be responsible for designing, developing, and maintaining large-scale data processing systems.Key ResponsibilitiesDesign and develop scalable data processing systems using Azure Data Factory, ADLS, and Azure SQL.Develop and maintain...


  • Bengaluru, Karnataka, India ScaleneWorks Full time

    Job SummaryAs a Security Information and Event Management (SIEM) Engineer at ScaleneWorks, you will be responsible for managing SIEM infrastructure like Microsoft Azure Sentinel and other SIEMs. You will work with Microsoft Azure cloud platform, log analytics workspaces, and have excellent knowledge of KQL (Kusto Query Language).Key Responsibilities Design...


  • Bengaluru, Karnataka, India Thomson Reuters Full time

    About the RoleIn this opportunity, you will be responsible for monitoring and stability of Splunk, and Enterprise Security SIEM platform. You will embed automation into the deployment and management of the infrastructure and application, identify and remediate SIEM application defects / process failures, onboard new application and platform logs via syslog,...


  • Bangalore/Bengaluru, Karnataka, India, Karnataka Orbus International Full time

    We are looking for a highly skilled SIEM Content Management Lead to oversee the design, development, and implementation of security information and event management (SIEM) solutions. The ideal candidate will have strong expertise in SIEM platforms, content creation, and threat detection techniques to enhance the organization's security monitoring and...


  • Bengaluru, Karnataka, India Thomson Reuters Full time

    About the RoleIn this exciting opportunity, you will be responsible for the monitoring and stability of Splunk and Enterprise Security SIEM platforms. Your key responsibilities will include:Embedding automation into the deployment and management of infrastructure and applicationsIdentifying and remediating SIEM application defects and process...

  • SIEM-SOC Lead SME

    1 week ago


    Bengaluru, Karnataka, India 5100 Kyndryl Solutions Private Limited Full time

    About UsAt 5100 Kyndryl Solutions Private Limited, we design, build, manage, and modernize mission-critical technology systems that the world depends on every day. Our commitment to innovation and customer satisfaction drives us to deliver exceptional results.The RoleWe are seeking a highly skilled Cybersecurity Defense professional to join our team. As a...


  • Bengaluru, Karnataka, India Microland Full time

    Key Responsibilities:As a Senior SIEM Administrator at Microland, you will be responsible for delivering high-quality, tested, and secure code using industry-standard software development practices. You will gather and refine specifications and requirements based on technical needs, develop technical documents and handbooks to accurately represent...


  • Bengaluru, Karnataka, Karnataka, India Resillion Full time

    Company Description :- Resillion is a global company with end-to-end capabilities: no matter your industry, your geographical location, or stage in your digital journey.- With offices in North America, Europe, and Asia, Resillion will be by your side.- Helping you and your organization realize your ambitions in cyber security, testing of digital media...

  • SOAR Engineer

    1 week ago


    Bengaluru, Karnataka, India 5100 Kyndryl Solutions Private Limited Full time

    About UsKyndryl is a leading provider of IT infrastructure services, dedicated to helping organizations design, build, manage, and modernize their technology systems. Our team of experts is passionate about delivering innovative solutions that meet the evolving needs of our clients.The RoleWe are seeking a highly skilled SOAR Engineer to join our team. As a...


  • Bengaluru, Karnataka, India DISH Network Full time

    Job Title: Lead Cybersecurity EngineerAt DISH Network, we're reimagining the future of connectivity. Our Technology teams challenge the status quo and reimagine capabilities across industries. We're seeking a Lead Cybersecurity Engineer to join our Information Security department and enhance our Threat Response and Management program.Job SummaryThis role...

  • Senior SOC Engineer

    3 days ago


    Bengaluru, Karnataka, India IN19 Alcon Laboratories (India) Pvt Ltd Company Full time

    Job Summary:The IN19 Alcon Laboratories (India) Pvt Ltd Company is seeking a highly skilled Senior SOC Engineer to join our team. As a Senior SOC Engineer, you will be responsible for monitoring, detecting, analyzing, and performing incident response to cyber threats against our applications, platforms, networks, and information.Key...


  • Bengaluru, Karnataka, India NTT DATA Full time

    Job Title: Senior MS Operations Team LeadJob Summary:We are seeking a highly skilled Senior MS Operations Team Lead to join our team at NTT DATA. As a key member of our operations team, you will be responsible for ensuring the smooth delivery of managed services to our clients. This includes proactively managing, overseeing, monitoring, investigating, and...

  • Senior SOC Engineer

    7 days ago


    Bengaluru, Karnataka, India IN19 Alcon Laboratories (India) Pvt Ltd Company Full time

    Job Summary:The Alcon Security Operations Center (SOC) is responsible for monitoring, detecting, analyzing, and performing incident response to cyber threats against Alcon applications, platforms, networks, and information. The environment includes local area networks/wide area networks (LAN/WAN), Internet connections, public facing services & websites,...