SIEM Engineering Lead
3 weeks ago
Job Title: SIEM Engineering Lead
About Resillion:
Resillion is a leading provider of Managed Security Services, helping organizations protect their assets and data from cyber threats. We are seeking a highly skilled SIEM Engineering Lead to join our team and contribute to our mission of delivering exceptional security solutions.
Job Summary:
We are looking for a seasoned cybersecurity professional with expertise in SIEM solutions, particularly Microsoft Sentinel. The successful candidate will provide leadership and supervision to our SOC Engineering team, ensuring tasks and projects are organized and completed to a high standard. They will also be responsible for deploying and configuring Microsoft Sentinel solutions for our customers, interacting with customers and technical service leads to understand their business challenges and desired outcomes, and developing technical solutions to automate repeatable tasks.
Key Responsibilities:
- Provide leadership and supervision to the SOC Engineering team ensuring tasks and projects are organized and completed to a high standard.
- Deploy and configure Microsoft Sentinel solutions for our customers, in support of enabling our Managed SOC services.
- Interact with customers and technical service leads to understand their business challenges and desired outcomes.
- Develop technical solutions to automate repeatable tasks, including Sentinel Workbooks and Logic Apps.
- Research, design, and implement cyber security solutions including but not limited to the Microsoft Security stack.
- Drive the review and update of client supporting documentation such as cyber security policies, architectures, standards, and playbooks.
- Conduct ongoing research around the threat landscape, including threat actors, TTPs and develop analytical rules, IR actions, investigation strategies and tooling.
- Support the SOC Team investigate and respond to client cyber security incidents taking an active role in incident response management.
- Ensure each customer's operational health is maintained and respond to all platform requests within agreed SLAs.
- Liaise with Account Managers across the business and assist with the presentation of SOC Monitor technology demonstrations to both current and prospective customers.
Requirements:
- Outstanding written and verbal communication skills in English, essential for effective collaboration and client engagement.
- Substantial experience in a customer-facing role, effectively communicating with diverse stakeholder groups.
- Demonstrated leadership in managing and guiding technical teams.
- Extensive experience within a Managed Security Service Provider (MSSP) environment.
- Advanced proficiency in SIEM, EDR, and EPP, with technical expertise in solutions including Microsoft Sentinel, Elastic, and CrowdStrike Falcon.
- Expertise in creating, tuning, and managing SIEM analytical rules to optimize threat detection and response capabilities, ensuring the efficacy and efficiency of security monitoring systems.
- A robust understanding of query and scripting languages such as KQL, Python, PowerShell, and RegEx, enhancing operational efficiency.
- Significant experience in leading responses to major security incidents.
- Comprehensive knowledge of Windows, Linux, and cloud technologies, particularly Microsoft Azure and Office 365.
- Proven ability in analyzing complex data, making strategic recommendations, and presenting findings to client and management teams as part of continuous service improvement initiatives.
- Detailed understanding of attack vectors, skilled in distinguishing between normal and anomalous activities, and adept at recommending countermeasures and remediation strategies.
- Experience collaborating with penetration testers and Red Team members in conducting Purple Teaming events.
Qualifications:
- Degree in Computer Science, Information Security, or a related field – Must have.
- SC-200 Microsoft Security Operations Analyst – Must have.
- AZ-500 Microsoft Azure Security Technologies – Must have.
- SC-100 Microsoft Cybersecurity Architect – Highly desirable.
- CompTIA Security+ SY0-601 – Desirable.
- Certified Ethical Hacker (CEH) – Desirable.
- GIAC Security Essentials (GSEC) – Desirable.
- GIAC Certified Incident Handler (GCIH) – Desirable.
-
SIEM Engineering Lead
4 weeks ago
Bengaluru, Karnataka, India Resillion Full timeJob Title: SIEM Engineering LeadResillion is seeking a highly skilled SIEM Engineering Lead to join our team. As a key member of our Managed Security Services team, you will be responsible for leading the deployment and configuration of Microsoft Sentinel solutions for our customers.About the RoleThis is a challenging and rewarding role that requires a...
-
SIEM Engineering Lead
4 weeks ago
Bengaluru, Karnataka, India Resillion Full timeJob Title: SIEM Engineering LeadAbout Resillion:We are a Managed Security Service Provider (MSSP) dedicated to delivering exceptional cybersecurity solutions to our clients. Our team of experts is passionate about protecting our customers' assets and data from evolving threats.Job Description:We are seeking a highly skilled SIEM Engineering Lead to join our...
-
SIEM Security Engineer
2 weeks ago
Bengaluru, Karnataka, India Buxton Consulting (INDIA) Private Limited Full timeJob Title: SIEM Security EngineerJob Overview:We are seeking a highly skilled SIEM Security Engineer to join our team at Buxton Consulting (INDIA) Private Limited. As a SIEM Security Engineer, you will be responsible for managing and providing SIEM health and operational support, including supporting architecture changes, tool deployments, and advanced...
-
SIEM Engineer
4 weeks ago
Bengaluru, Karnataka, India ScaleneWorks Full timeJob Title: SIEM EngineerAt ScaleneWorks, we are seeking a highly skilled SIEM Engineer to join our team. The successful candidate will be responsible for managing our SIEM infrastructure, including Microsoft Azure Sentinel and other SIEMs.Key Responsibilities:Manage SIEM infrastructure, including Microsoft Azure Sentinel and other SIEMs.Develop and implement...
-
SIEM Chronicle Engineer
6 days ago
Bengaluru, Karnataka, India Buxton Consulting (INDIA) Private Limited Full timeAbout the RoleAs a SIEM Chronicle Engineer at Buxton Consulting (INDIA) Private Limited, you will play a critical role in managing and providing SIEM Chronicle health and operational support. This includes supporting architecture changes, tool deployments, and advanced detection engineering.Key ResponsibilitiesSIEM Management: Manage and provide SIEM...
-
SIEM Engineering Lead
4 weeks ago
Bengaluru, Karnataka, India Resillion Full timeAbout the RoleWe are seeking a highly skilled and experienced SIEM Engineering Lead to join our team at Resillion. As a key member of our security operations team, you will be responsible for providing leadership and supervision to the SOC Engineering team, ensuring tasks and projects are organised and completed to a high standard.Key ResponsibilitiesDeploy...
-
SIEM Content Management Lead
4 weeks ago
Bengaluru, Karnataka, India Orbus International Full timeJob Title: SIEM Content Management LeadJob Summary:We are seeking a highly skilled SIEM Content Management Lead to oversee the design, development, and implementation of security information and event management (SIEM) solutions. The ideal candidate will have strong expertise in SIEM platforms, content creation, and threat detection techniques to enhance the...
-
Senior SIEM Engineer
4 weeks ago
Bengaluru, Karnataka, India Thomson Reuters Full timeAbout the RoleIn this exciting opportunity, you will play a critical role in ensuring the stability and security of our Splunk and Enterprise Security SIEM platform. As a seasoned SIEM Engineer, you will be responsible for monitoring and maintaining the platform, embedding automation into our infrastructure and application deployment, and identifying and...
-
SIEM Content Management Lead
3 weeks ago
Bengaluru, Karnataka, India Orbus International Full timeWe're seeking a highly skilled SIEM Content Management Lead to oversee the design, development, and implementation of security information and event management (SIEM) solutions.Key Responsibilities:SIEM Content Development:Design, develop, and maintain SIEM content, including detection rules, use cases, correlation rules, dashboards, and reports.Optimize...
-
Security Operations Trainer
1 week ago
Bengaluru, Karnataka, India SIEM XPERT Full timeSIEM XPERT, a leading cybersecurity training provider, is seeking a part-time Security Operations Trainer to join our team. Located in Bangalore, we cater to both freshers and experienced professionals looking to enhance their expertise in SIEM platforms such as Splunk, EDR, and XSOAR.This is a remote role for a Microsoft Sentinel/IBM QRadar Instructor who...
-
Senior SIEM Engineer
4 weeks ago
Bengaluru, Karnataka, India Thomson Reuters Full timeAbout the RoleAs a Senior SIEM Engineer at Thomson Reuters, you will be responsible for monitoring and stability of Splunk, and Enterprise Security SIEM platform. You will embed automation into the deployment and management of the infrastructure and application, identify and remediate SIEM application defects / process failures, onboard new application and...
-
Senior SIEM Engineer
4 weeks ago
Bengaluru, Karnataka, India Thomson Reuters Full timeAbout the RoleThe Information Security and Risk Management (ISRM) organization at Thomson Reuters is seeking a Senior SIEM Engineer to join our growing SIEM & Cyber Fusion Engineering team. This candidate will collaborate with our SOC, CIRT, Threat Detection, and Cyber Intel functions to deliver capabilities to improve our ability to defend against cyber...
-
Data Engineer
4 weeks ago
Bengaluru, Karnataka, India Microland Full timeJob SummaryMicroland is seeking a highly skilled Data Engineer - SIEM to join our team. As a Data Engineer - SIEM, you will be responsible for designing, developing, and maintaining large-scale data processing systems.Key ResponsibilitiesDesign and develop scalable data processing systems using Azure Data Factory, ADLS, and Azure SQL.Develop and maintain...
-
SIEM Security Operations Specialist
2 weeks ago
Bengaluru, Karnataka, India Wow Jobs (Wow Softech Pvt. Ltd) Full timeSIEM Engineer Role OverviewAt Wow Jobs (Wow Softech Pvt. Ltd), we are seeking a skilled SIEM Engineer to manage and provide SIEM health and operational support. This includes supporting architecture changes, tool deployments, and advanced content development.Key Responsibilities:- Perform SIEM configuration management and troubleshooting, addressing complex...
-
Senior SIEM Engineer
3 weeks ago
Bengaluru, Karnataka, India Thomson Reuters Full timeAbout the RoleIn this opportunity, you will be responsible for monitoring and stability of Splunk, and Enterprise Security SIEM platform. You will embed automation into the deployment and management of the infrastructure and application, identify and remediate SIEM application defects / process failures, onboard new application and platform logs via syslog,...
-
Security Information and Event Management
4 weeks ago
Bengaluru, Karnataka, India ScaleneWorks Full timeJob SummaryAs a Security Information and Event Management (SIEM) Engineer at ScaleneWorks, you will be responsible for managing SIEM infrastructure like Microsoft Azure Sentinel and other SIEMs. You will work with Microsoft Azure cloud platform, log analytics workspaces, and have excellent knowledge of KQL (Kusto Query Language).Key Responsibilities Design...
-
Senior SIEM Engineer
4 weeks ago
Bengaluru, Karnataka, India Thomson Reuters Full timeAbout the RoleIn this opportunity, you will be responsible for monitoring and stability of Splunk, and Enterprise Security SIEM platform. You will embed automation into the deployment and management of the infrastructure and application, identify and remediate SIEM application defects / process failures, onboard new application and platform logs via syslog,...
-
SIEM Content Management Lead
4 weeks ago
Bangalore/Bengaluru, Karnataka, India, Karnataka Orbus International Full timeWe are looking for a highly skilled SIEM Content Management Lead to oversee the design, development, and implementation of security information and event management (SIEM) solutions. The ideal candidate will have strong expertise in SIEM platforms, content creation, and threat detection techniques to enhance the organization's security monitoring and...
-
Senior SIEM Engineer
4 weeks ago
Bengaluru, Karnataka, India Thomson Reuters Full timeAbout the RoleIn this exciting opportunity, you will be responsible for the monitoring and stability of Splunk and Enterprise Security SIEM platforms. Your key responsibilities will include:Embedding automation into the deployment and management of infrastructure and applicationsIdentifying and remediating SIEM application defects and process...
-
Inside Sales Manager
2 weeks ago
Bengaluru, Karnataka, India SIEM XPERT Full timeAbout the RoleSIEM XPERT is seeking a highly motivated Inside Sales Manager to join our team. As an Inside Sales Manager, you will be responsible for reaching out to leads, converting them into customers, ensuring customer satisfaction, and providing excellent customer service.ResponsibilitiesReach out to leads and convert them into customersEnsure customer...