- Implementation of use cases using SPL/KQL with complex correlation across different data sources.
- Development of dashboards/workbooks, alerts.
- Implementation of SOAR workflows using Logic Apps, Phantom, Demisto etcPreferred Knowledge
- Basic knowledge of User Entity Behavior, Machine Learning models.
- Scripting knowledge of python is an added advantage.
- Assist in administration, maintenance, and optimization of the Splunk Enterprise and Splunk ES.
- Integrating log sources with Sentinel using REST API.
- Working knowledge of all architectural components of SIEM
- Knowledge about cloud environment and hybrid environmentsImplementation of clustered environment and related concepts such as High availability, parallelprocessing etc.
- Experience of threat intelligence and threat hunting is added advantage.
- KQL/SPLUphold the firm's code of ethics and business conduct.
- Bachelor's Degree Preferred
-
Siem Security Architect
4 days ago
Harman International Bengaluru, Karnataka, IndiaLocation: · - IN_Bangalore_EOIZ Indust Area Campus_HCS · - Additional Location: · - Bangalore, India · - Job Family: · - Digital · - Worker Type Reference: · - Regular - Permanent · - Pay Rate Type: · - Salary · - JOB ID: · - R · **Description & Requirements**: · JD: Cloud secur ...
-
Siem Security Use Cases Architect
1 week ago
Engage ESM J. P. Nagar, Bengaluru, Karnataka, India**Publication Date**:Mar 31, 2023**Ref. No**:420195**Location**:J. P. Nagar, Bengaluru, Karnat, IN, SIEM Architect**Exp : 10-12years** · **Job Location-Bangalore** · **JD**: · - 1. Prior experience of Content Engineering (i.e. Use Case Conceptualization or rollouts)- 2. At least ...
-
CD-Cyber Security- SIEM
2 days ago
PricewaterhouseCoopers Service Delivery Center (Bangalore) Private Limited bangalore, IndiaDescription · & SummaryA career in our Cybersecurity, Privacy and Forensics will provide you the opportunity to solve our clients most critical business and data protection related challenges. You will be part of a growing team driving strategic programs, data analytics, innova ...
-
Azure Sentinel Sme 9 to 12 Years Pan India
6 days ago
Capgemini Bengaluru, IndiaProvide superior technical security expertise(L2/L3/L4) to ensure that the Security Operations Centre SOC is always delivering a professional service to its customers- · - Conduct detailed analytical queries and investigations identify areas that require specific attention identi ...
-
Logrythm
2 weeks ago
Quess IT Staffing Bengaluru, India**About Us** · "Magna Infotech, now Quess IT Staffing, is India's largest IT staffing company with over 20 years of experience in staffing IT professionals in 300+ companies across levels and skillsets. Our 10,000+ associates deployed in 80+ cities and towns are proficient in ove ...
-
Bengaluru
1 week ago
Qualitest Bengaluru, India· Acknowledge, analyse, and validate incidents triggered from correlated events through SIEM solution · oCollection of necessary logs that could help in the incident containment and security investigation · oEscalate validated and confirmed incidents to SOC Lead · oUndertake fir ...
-
Bengaluru
6 days ago
Qualitest Bengaluru, India· Acknowledge, analyze, and validate incidents triggered from correlated events through SIEM solution · Collection of necessary logs that could help in the incident containment and security investigation · Escalate validated and confirmed incidents to SOC Lead · Undertake first ...
-
Azure Sentinel 9 to 12 Years Pan India
5 days ago
Capgemini Bengaluru, IndiaProvide superior technical security expertise to ensure that the Security Operations Centre SOC is always delivering a professional service to its customers · - Conduct detailed analytical queries and investigations identify areas that require specific attention identify indicato ...
-
Bengaluru
1 week ago
Qualitest Bengaluru, India· **Expectations**: · Exp 3-5 years SOC Engineer will be responsible for monitoring, reporting, and escalating events to our SOC Leads. · The primary function of this position is to monitor the analytics tools, perform alert management, and initial incident qualification. · This ...
-
Capgemini Bengaluru, IndiaQradar SME Experience, Build and continuously improve SOC analytics framework. · - Ensure effective designing and implementation of SIEM content filters rules expressions and other identification mechanisms of the threat and vulnerability management technologies used within the S ...
-
Siem Azure Sentinel Expert
4 days ago
Syntaxive Technologies Bengaluru, India**Exp Required: 4 - 7 years** · **LOCATIONS - BANGALORE / KOCHI / THIRUVANANTHAPURAM / PUNE / CHENNAI / HYDERABAD / NOIDA** · **Hybrid Working Mode** · **Requirements: · - ** · Experience with Azure Sentinel SIEM platform. · University degree in information security or equivalent ...
-
soc l3
2 weeks ago
DXC Technology Bengaluru, Karnataka, IndiaSOC Senior Analyst with very good experience on carrying out in-depth analysis and investigation of a security alert / incident, able to create run book and playbook, work on creation of new analytics as per requirement of client environment. · CSOC / SIEM detection development a ...
-
Azure Sentinel 04 to 06 Years Mumbai
4 days ago
Capgemini Bengaluru, IndiaGood knowledge of SIEM, SIEM Architecture and Hybrid Integrations. · - Expertise with Azure Sentinel creating deploying Analytics Rules Playbooks Workbooks Logic Apps Log Analytics Key Vault IAM Azure AD etc · - Good Knowledge of Azure DevOps GitHub On boarding various of log sou ...
-
Capgemini Bengaluru, IndiaProvide superior technical security expertise to ensure that the Security Operations Centre (SOC) is always delivering a professional service to its customers · - Conduct detailed analytical queries and investigations, identify areas that require specific attention, identify indi ...
-
Soc-ir-engineer-l2
1 week ago
IBM Bengaluru, India**Introduction** · As a Service Delivery Specialist, you are the face of IBM for our customers. Your clients' success depends on your ability to understand their needs and respond to requests for new services. This role is an integral part of both account planning and delivering ...
-
Sentinel Admin Siem 03 to 09 Years Pan India
1 week ago
Capgemini Bengaluru, Karnataka, India**Job Description**: · - **Good knowledge of SIEM, SIEM Architecture and Hybrid Integrations.** · - **Expertise with Azure Sentinel, creating/deploying Analytics Rules, Playbooks, Workbooks, Logic Apps, Log Analytics, Key Vault, IAM, Azure AD, etc** · - **Good Knowledge of Azure ...
-
Sentinel Admin 04 to 12 Years Pan India
6 days ago
Capgemini Bengaluru, India**Job Description**: · - Good knowledge of SIEM, SIEM Architecture and Hybrid Integrations. · - Expertise with Azure Sentinel, creating/deploying Analytics Rules, Playbooks, Workbooks, Logic Apps, Log Analytics, Key Vault, IAM, Azure AD, etc · - Good Knowledge of Azure DevOps & G ...
-
Sentinel Admin 04 to 12 Years Pan India
6 days ago
Capgemini Bengaluru, IndiaGood knowledge of SIEM, SIEM Architecture and Hybrid Integrations. · - Expertise with Azure Sentinel, creating/deploying Analytics Rules, Playbooks, Workbooks, Logic Apps, Log Analytics, Key Vault, IAM, Azure AD, etc · - Good Knowledge of Azure DevOps & GitHub, Familiarity with G ...
-
Splunk Architect
1 week ago
Meithee Tech Private Limited Bengaluru, Karnataka, India**Splunk Architect** · Contract duration - 2 to 3Years · Experience - 7 to 15 years · Primary location - Chennai, Bengaluru, Pune · Secondary location - Kolkata & Mumbai · Employment Type - Contract · **Requirements**: · - Should have SPLUNK Architect Certification · - Experience ...
-
Jivs Archiving Sustain SOC Support
1 day ago
DXC Technology Bengaluru, Karnataka, IndiaOVF SOC ANALYST · Must have skill and knowledge of Sentinel SIEM. · Must have Working knowledge and Skill of CrowdStrike and Defender for endpoints. · Having Knowledge and working exposure of SNOW and Incident handling. · Working and exposure of fine tune and false + ve cases. · ...
CD-Cyber Security- SIEM - Bengaluru, India - PricewaterhouseCoopers Service Delivery Center (Bangalore) Private Limited
Description
& SummaryA career in our Cybersecurity, Privacy and Forensics will provide you the opportunity to solve our clients most critical business and data protection related challenges. You will be part of a growing team driving strategic programs, data analytics, innovation, deals, cyber resilency, response, and technical implementation activities. You will have access to not only the top Cybersecurity, Privacy and Forensics professionals at PwC, but at our clients and industry analysts across the globe.The Threat Detection team works with clients to detect cyber threats, identify malicious activity that could compromise the network and help with mitigation efforts before the threat can present vulnerabilities.
To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level.
It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future.
As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution.
PwC Professional skills and responsibilities for this management level include but are not limited to:Use feedback and reflection to develop self awareness, personal strengths and address development areas.
Delegate to others to provide stretch opportunities, coaching them to deliver results.
Demonstrate critical thinking and the ability to bring order to unstructured problems.
Use a broad range of tools and techniques to extract insights from current industry or sector trends.
Review your work and that of others for quality, accuracy and relevance.
Know how and when to use tools available for a given situation and can explain the reasons for this choice.
Seek and embrace opportunities which give exposure to different situations, environments and perspectives.Use straightforward communication, in a structured way, when influencing and connecting with others.
Able to read situations and modify behavior to build quality relationships.
Year of Experience4-8 YearsPosition RequirementsMinimum of 4-8 years of prior experience in SIEM Technologies, Information Security Expertise in SIEMsolutions like Splunk, ArcSight and Azure Sentinel Tools.
Expertise in building use cases around NIST and MITRE ATT&CK framework to enable detection atvarious stages of a cyber attack.
EducationDegrees/Field of Study required:
Degrees/Field of Study preferred:
CertificationsRequired SkillsOptional SkillsDesired LanguagesTravel RequirementsNot Specified
Available for Work Visa Sponsorship?No
Government Clearance Required?No
Job Posting End Date