- Should have strong knowledge in Microsoft Sentinel SIEM engineering activities.
- Should have performed SIEM engineering role more than 5 years.
- Should have expertise in building custom analytical rules, tuning of analytical rules, building automation through logic apps, management of entire product feature, end to end configuration/administration.
- Should have expertise in forming KQL queries and functions for complex detection and monitoring requirements.
- Should have strong knowledge in MITRE attack framework and expertise in developing detections across framework.
- Should have expertise in log management, retention configurations, maintenance of logs at low cost, performing access management, developing new custom dashboard based on different requirements.
- Should have proven record of implementing Sentinel advanced features, efficient log collection mechanisms, deployment and maintenance of log forwarders, maintenance of local agents.
- Should have expertise in integrating data sources which are not supported by Sentinel tool OOB. Custom parser development and ability to solve technical issues in Sentinel.
- Should have ability to prepare and maintain policy and procedure documentations around SIEM technology, document life cycle management skill is required.
- Should have expertise in consuming contents from content hub and management of log analytics workspace and ability to handle issues in MMA and AMA agents. (Hands-on in migrating agents from MMA to AMA will be added advantage)
- Should have knowledge and experience in data transformation rules and data collection rules concepts in Sentinel.
- Should have proven record of participation in customer or client reviews or global certifications regarding security controls in SIEM. Compliance and regulatory requirements understandings are good to have.
- Should have ability to work with stakeholders to solve technical issues and must support and deliver complex business, security, and operational requirements.
- Should have ability to work with vendor technical support group and driving issues towards effective and permanent closure.
- Preference should be given for candidates completed expert training and certifications in Sentinel and Defender products of Microsoft.
- Good to have strong knowledge in Microsoft Sentinel pricing, Microsoft defender products, Microsoft Cloud services and Azure Arc.
- Should have strong knowledge in Microsoft Sentinel SIEM engineering activities.
- Should have performed SIEM engineering role more than 5 years.
- Should have expertise in building custom analytical rules, tuning of analytical rules, building automation through logic apps, management of entire product feature, end to end configuration/administration.
- Should have expertise in forming KQL queries and functions for complex detection and monitoring requirements.
- Should have strong knowledge in MITRE attack framework and expertise in developing detections across framework.
- Should have expertise in log management, retention configurations, maintenance of logs at low cost, performing access management, developing new custom dashboard based on different requirements.
- Should have proven record of implementing Sentinel advanced features, efficient log collection mechanisms, deployment and maintenance of log forwarders, maintenance of local agents.
- Should have expertise in integrating data sources which are not supported by Sentinel tool OOB. Custom parser development and ability to solve technical issues in Sentinel.
- Should have ability to prepare and maintain policy and procedure documentations around SIEM technology, document life cycle management skill is required.
- Should have expertise in consuming contents from content hub and management of log analytics workspace and ability to handle issues in MMA and AMA agents. (Hands-on in migrating agents from MMA to AMA will be added advantage)
- Should have knowledge and experience in data transformation rules and data collection rules concepts in Sentinel.
- Should have proven record of participation in customer or client reviews or global certifications regarding security controls in SIEM. Compliance and regulatory requirements understandings are good to have.
- Should have ability to work with stakeholders to solve technical issues and must support and deliver complex business, security, and operational requirements.
- Should have ability to work with vendor technical support group and driving issues towards effective and permanent closure.
- Preference should be given for candidates completed expert training and certifications in Sentinel and Defender products of Microsoft.
- Good to have strong knowledge in Microsoft Sentinel pricing, Microsoft defender products, Microsoft Cloud services and Azure Arc.
-
Siem Enginer- L3
3 weeks ago
Rackspace Gurugram, Haryana, India**SecOps Engineer L3 (SIEM Enginering)** · *** · **About Rackspace Cyber Defence** · - Rackspace Cyber Defence is our next generation cyber defence and security operations capability that builds on 20+ years of securing customer environments to deliver proactive, risk-based, thre ...
-
Siem Engineer-l3
2 days ago
NAMISITE Gurugram, Haryana, India**SIEM engineer provides technical support/engineering for network/cloud firewalls, network/cloud Intrusion detection/prevention systems, virtual private networks, and web security gateways.** · Sample responsibilities for this position include: · - Grow as a leader in building, ...
-
SIEM Engineer
6 days ago
Aceseekers gurugram, IndiaJob Description : · Experience : Years · 1) As a SIEM Engineer you will be managing and providing SIEM health and operational support, including supporting architecture changes, tool deployments and advanced content development. · 2) Perform SIEM configuration management, and tr ...
-
SIEM Enginer- L3
3 weeks ago
Rackspace Gurugram, IndiaSecOps Engineer L3 (SIEM Enginering) About Rackspace Cyber Defence Rackspace Cyber Defence is our next generation cyber defence and security operations capability that builds on 20+ years of securing customer environments to deliver proactive, risk-based, threat-informed and inte ...
-
SIEM Support Engineer
6 days ago
NCR Corporation gurugram, India Full timeAbout NCR VOYIX · NCR VOYIX Corporation (NYSE: VYX) is a leading global provider of digital commerce solutions for the retail, restaurant and banking industries. NCR VOYIX is headquartered in Atlanta, Georgia, with approximately 16,000 employees in 35 countries across the globe ...
-
Cybersecurity SIEM Engineer
6 days ago
Cardinal Health Delhi, IndiaHeadquartered in Dublin, Ohio, Cardinal Health, Inc. (NYSE: CAH) is a global, integrated healthcare services and products company connecting patients, providers, payers, pharmacists and manufacturers for integrated care coordination and better patient management. Backed by nearly ...
-
System Administration
2 weeks ago
Siemens Gurgaon, India**Looking for challenging role? If you really want to make a difference - make it with us** · Siemens Energy (SE) is a global pacesetter in energy, helping customers to meet the evolving demands of today's industries and societies. SE comprises broad competencies across the entir ...
-
System Administration
1 week ago
Siemens Gurgaon, India**Looking for challenging role? If you really want to make a difference - make it with us** · Siemens Energy (SE) is a global pacesetter in energy, helping customers to meet the evolving demands of today's industries and societies. SE comprises broad competencies across the entir ...
-
Cloud Architect
2 weeks ago
Insight Enterprises, Inc. Gurgaon, India**Requisition Number**:92859** · **Job Description**: · Total Exp · - 10+ years · - Have Hands-on technical minimum 5+ Years of Experience designing and implementing security solutions for Azure across IaaS and PaaS models and environments (Public, Private, Hybrid). · - Minimum 4 ...
-
Solution Architect
2 weeks ago
Fortinet Gurugram, Haryana, IndiaAs a member of the Subject Matter Expert (SME) Engineering Department, you will work closely with the Account Team to position our Portfolio of SecOps Solutions. · **Responsibilities**: · - Member of the SME team which covers India region (India & SAARC Region) · - Expected to wo ...
-
Threat Hunter and Incident Response Expert
2 weeks ago
Coralogix Gurgaon, IndiaSnowbit is a cybersecurity technology innovator with a vision to empower organizations across the globe to quickly, efficiently, and cost-effectively ready themselves to address omnipresent cyber risk. Towards this end, Snowbit, built off years of Israeli cybersecurity experience ...
-
Cybersecurity Architect
2 weeks ago
Hatch Gurgaon, India**Requisition ID**:87925 · **Job Category**:Information Technology · **Location**:Gurugram, Haryana, India · Join a company that is passionately committed to the pursuit of a better world through positive change. With more than 65 years of business and technical expertise in mini ...
-
Cyber Security Architect
2 weeks ago
NOKIA Gurgaon, India**Come create the technology that helps the world act together** · Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people's lives and will help us build the capabilities needed for ...
-
SOC L1/l2 Rsa Netwitness
1 week ago
NMS Consultant Gurgaon, IndiaFrom 1 to 6 year(s) of experience · ₹ Not Disclosed by Recruiter · - Gurgaon/Gurugram, Chennai · - Monitor Console & Dashboards and provide response to the reported incidents · - Monitor **SIEM** (**RSA** **Netwitness**)tool health and perform rules fine tuning. · - ** Administra ...
-
soc l2
1 day ago
NMS Consultant Gurgaon, IndiaFrom 2 to 6 year(s) of experience · ₹ Not Disclosed by Recruiter · - Gurgaon/Gurugram · **JOB TITLE**: Cyber Security Analyst · **LOCATION**: Gurugram, India · **ROLES & RESPONSIBILITIES**: · Provide incident response as part of the 24x7 Security Operations Centre · Monitoring of ...
-
Security Technology Expert
1 week ago
NOKIA Gurgaon, India**Join us in creating the technology that helps the world act together** · We are a B2B technology innovation leader pioneering the future where networks meet cloud. At Nokia you will have a positive impact on people's lives and help build the capabilities needed for a more produ ...
-
Security Technology Operations Expert
1 week ago
NOKIA Gurgaon, India**Join us in creating the technology that helps the world act together** · We are a B2B technology innovation leader pioneering the future where networks meet cloud. At Nokia you will have a positive impact on people's lives and help build the capabilities needed for a more produ ...
-
Security Expert
5 days ago
Orange Business Services Gurgaon, India**About the role**: · 1) Primary responsibility is to provide Tier 2 network security support of Firewall environments supporting multiple customers. · 2) This position interfaces with external clients and is highly visible. · 3) Responsible for general architecture, initial conf ...
-
Siemens Healthineers Gurgaon, India**Looking for challenging role? If you really want to make a difference - make it with us** · Siemens Energy is focused on helping customers navigate the world's most pressing energy problems. · As a world leader in developing and producing the most advanced engineering technolog ...
-
Cyber Security Trainer
2 weeks ago
CQS Training Pvt. Ltd. Janakpuri, Delhi, Delhi, IndiaSafeguards information system assets by identifying and solving potential and actual security problems. · - Protects system by defining access privileges, control structures, and resources. · - Recognizes problems by identifying abnormalities; reporting violations. · - Implements ...
SIEM Engineer - gurugram, India - Virtusa
Description
SIEM Engineer - CREQ184269 DescriptionJob Description:
Hyderabad, Andhra Pradesh, India
Job Type Experienced Primary Skills IT Service Management, Cloud Risk & Compliance Management Years of Experience 7 Qualification
Job Description:
