Siem Integration Architect

2 weeks ago

Bengaluru Karnataka, India Unisys Full time

**What success looks like in this role**:

- Lead the **integration of alarm/data feeds from multiple SIEM platforms**(e.g., Splunk, LogRhythm, Securonix) into Microsoft Sentinel.
- Configure and manage **Cribl pipelines**to collect, filter, transform, and enrich raw data before forwarding to Sentinel.
- Design and implement **data normalization strategies**to ensure consistent formatting, tagging, and field mapping.
- Build and maintain **data ingestion workflows**, ensuring optimized performance, scalability, and reliability.
- Develop and maintain **custom Sentinel connectors, KQL queries, workbooks, and analytics rules**.
- Implement and tune **SOAR automation playbooks**using Logic Apps or integrated response tools.
- Collaborate with resolver teams (Platform, Application, CloudOps) for end-to-end use case implementation.
- Act as SME for Microsoft Sentinel and Cribl architecture in client-facing and technical forums.
- Troubleshoot integration and ingestion issues across hybrid and cloud-native infrastructures.
- Establish alert pipelines to bring **security alerts/alarms from legacy SIEM tools**into Sentinel for centralized monitoring.
- Ensure data integrity, compliance, and auditability in accordance with customer and regulatory requirements.
- Generate technical documentation, integration standards, and data flow diagrams.
- Provide expert guidance to SOC analysts and security engineers on new use cases and data onboarding.
- Stay updated on current and emerging threats to enhance detection and response capabilities.

**You will be successful in this role if you have**:

- **Required Skills & Experience**:

- **10-15 years of experience**in cybersecurity, with a strong technical background in SIEM tools and security data architecture.
- Proven experience with **Microsoft Sentinel**, including data connectors, KQL, and automation via Logic Apps.
- Hands-on expertise in **Cribl**: stream design, data parsing, enrichment, routing, and performance tuning.
- Experience with **multiple SIEM platforms**(e.g., Splunk, LogRhythm, Securonix) and their alarm/log structures.
- Deep understanding of **SIEM data ingestion models, log collection, and telemetry pipelines**.
- Familiarity with **cloud-native services**(Azure, AWS, GCP) and their logging/integration mechanisms.
- Scripting experience with **Python**and **PowerShell**for integration and automation tasks.
- Ability to troubleshoot complex integration issues involving multiple data sources and tools.

**Key Qualifications**:

- Bachelor’s degree in Computer Science, Information Security, or related field.
- Certifications preferred**:Microsoft SC-200**, **Security+**, **GCIH**, **CEH**, **Cribl Certified Admin**.
- Excellent communication and stakeholder management skills.
- Strong problem-solving mindset and attention to detail.
- Ability to mentor junior staff and lead technical discussions.

Unisys is proud to be an equal opportunity employer that considers all qualified applicants without regard to age, blood type, caste, citizenship, color, disability, family medical history, family status, ethnicity, gender, gender expression, gender identity, genetic information, marital status, national origin, parental status, pregnancy, race, religion, sex, sexual orientation, transgender status, veteran status or any other category protected by law.

  • SIEM Integration Architect

    2 days ago

    Bengaluru, Karnataka, India Unisys Full time US$ 1,25,000 - US$ 1,75,000 per year

    What Success Looks Like In This RoleLead the integration of alarm/data feeds from multiple SIEM platforms (e.g., Splunk, LogRhythm, Securonix) into Microsoft Sentinel.Configure and manage Cribl pipelines to collect, filter, transform, and enrich raw data before forwarding to Sentinel.Design and implement data normalization strategies to ensure consistent...

  • Platformadministrator - Nextgen Siem

    3 days ago

    Bengaluru, Karnataka, India ColorTokens Full time

    Job Title: Platform Administrator - NextGen SIEM Location: Bangalore (on site) About ColorTokens At ColorTokens, we empower businesses to stay operational and resilient in an increasingly complex cybersecurity landscape. Breaches happen—but with our cutting-edge ColorTokens Xshield platform, companies can minimize the impact of breaches by preventing the...

  • Sme -siem (So1)

    2 weeks ago

    Bengaluru, Karnataka, India Microland Full time

    **Required Skills**: Technology | Sentinel SIEM Tool Expert | Level 3 Support Technology | Securonix SIEM Tools Expert | Level 3 Support Technology | ArcSight SIEM Tools Administrator | Level 2 Support Technology | Cybersecurity General Administrator | Level 2 Support Technology | Network Traffic Analysis Administrator | Level 2 Support **Education...

  • Digital Marketing Manager

    1 week ago

    Bengaluru, Karnataka, India SIEM XPERT Full time

    Digital Marketing Manager Company: SIEM XPERT Location: Bengaluru (Onsite) Experience: 5+ years Department: Marketing Reporting To: Founder/CEO Share resume to : About SIEM XPERT SIEM XPERT is a leading EdTech and MSSP focused on cybersecurity training and managed SOC services. We're scaling globally and seeking a results-driven Digital...

  • Digital Marketing Manager

    1 week ago

    Bengaluru, Karnataka, India SIEM XPERT Full time

    Digital Marketing Manager Company: SIEM XPERT Location: Bengaluru (Onsite) Experience: 5+ years Department: Marketing Reporting To: Founder/CEO Share resume to : About SIEM XPERT SIEM XPERT is a leading EdTech and MSSP focused on cybersecurity training and managed SOC services. We're scaling globally and seeking a results-driven Digital...

  • Digital Marketing Manager

    1 week ago

    Bengaluru, Karnataka, India SIEM XPERT Full time

    Digital Marketing ManagerCompany: SIEM XPERT Location: Bengaluru (Onsite) Experience: 5+ years Department: Marketing Reporting To: Founder/CEO Share resume to: sulabh.mishra@siemxpert.comAbout SIEM XPERTSIEM XPERT is a leading EdTech and MSSP focused on cybersecurity training and managed SOC services. We're scaling globally and seeking a results-driven...

  • Digital Marketing Manager

    1 week ago

    Bengaluru, Karnataka, India SIEM XPERT Full time

    Digital Marketing ManagerCompany: SIEM XPERTLocation: Bengaluru (Onsite)Experience: 5+ yearsDepartment: MarketingReporting To: Founder/CEOShare resume to: sulabh.mishra@siemxpert.comAbout SIEM XPERTSIEM XPERT is a leading EdTech and MSSP focused on cybersecurity training and managed SOC services. We're scaling globally and seeking a results-driven Digital...

  • Digital Marketing Manager

    7 days ago

    Bengaluru, Karnataka, India SIEM XPERT Full time

    Digital Marketing ManagerCompany: SIEM XPERT Location: Bengaluru (Onsite) Experience: 5+ years Department: Marketing Reporting To: Founder/CEO Share resume to: sulabh.mishra@siemxpert.comAbout SIEM XPERTSIEM XPERT is a leading EdTech and MSSP focused on cybersecurity training and managed SOC services. We're scaling globally and seeking a results-driven...

  • Platform Administrator

    3 days ago

    Bengaluru, Karnataka, India ColorTokens Full time

    **Job Title**:Platform Administrator - NextGen SIEM **About ColorTokens** At **ColorTokens**, we empower businesses to stay operational and resilient in an increasingly complex cybersecurity landscape. Breaches happen—but with our cutting-edge **ColorTokens Xshield platform**, companies can minimize the impact of breaches by preventing the lateral spread...

  • Platform Administrator

    3 days ago

    Bengaluru, Karnataka, India Colortokens Full time

    **Job Title**:Platform Administrator - NextGen SIEM **About ColorTokens** At **ColorTokens**, we empower businesses to stay operational and resilient in an increasingly complex cybersecurity landscape. Breaches happen—but with our cutting-edge **ColorTokens Xshield platform**, companies can minimize the impact of breaches by preventing the lateral spread...