JSAMP SIEM Admin - Mumbai
2 days ago
Job description
Education Qualification Requirements:
B.Tech (Computer Science/IT/Electronics/Communication Engineering) with min 60% marks
Desirable CEH
Experience Years
Location - Navi Mumbai
Responsibilities
Development of correlation rules to detect cyber-attacks and insider threats.
Development of trend analysis graphs (SIEM Dashboards) for critical events based on event correlation.
Develop JSAMP/ Azure Sentinel playbooks/workbooks and train SOC monitoring team on JSAMP(Wazuh) platform.
Evaluate existing Elastic clusters, configuration parameters, indexing, search and query performance tuning, troubleshooting, security and administration.
Focus on performance tuning and improving performance by understanding optimization and looking into several scenarios
JSAMP deployment on Cloud platforms and containers.
Designs, implements, and configures Kibana visualizations as required.
End to end ELK data Ingestion, enrichment, transformation and visualization
Qualitative Requirements
years experience in ELK stack designing, development and management.
years experience in cyber security domain.
Well versed with relevancy scoring and analytical application of Elasticsearch with knowledge in data science.
Strong experience in grok filters, Xpack, metrics, cluster management, pipelines
Relevant experience in Java and Linux (2-3 years)
Exposure to architectural patterns of a large, high-scale applications, well-designed APIs
Similar jobs
Company Overview · Jio, with its headquarters in Navi Mumbai, Maharashtra, is at the forefront of India's telecommunications revolution, supported by a workforce of over 10,001 employees. As a leading telecom operator with more than 400 million customers, Jio has also pioneered a ...
2 days ago
Configure, maintain the SIEM platform ELK Develop fine tune correlation rules alerts dashboards to support SOC use cases Onboard log sources various platforms Windows Linux cloud network devices applications Perform health checks upgrades patch management of SIEM components Work ...
1 month ago
Configure, and maintain the SIEM platform (e.g., ELK, Splunk, QRadar, ArcSight, LogRhythm, Sentinel). · ...
1 month ago
The purpose of Atos Group is to help design the future of the information space. · ...
1 month ago
Job summary · A SIEM Admin is responsible for configuring and maintaining the SIEM platform, developing correlation rules, alerts, and dashboards to support SOC use cases. · ...
1 month ago
About Atos GroupAtos Group is a global leader in digital transformation with c. · 67, · 000 employees and annual revenue of c. · €10 billion operating in · 61 countries under two brands — Atos for services Eviden for products European number one in cybersecurity cloud high perfor ...
1 month ago
+Job Summary · Configure and maintain the SIEM platform - ELK. Develop and fine-tune correlation rules, alerts, and dashboards to support SOC use cases. · +Perform health checks, upgrades and patch management of SIEM components. · Work closely with SOC analysts to improve detecti ...
1 month ago
The SIEM Admin-ELK will configure and maintain the SIEM platform -ELK. They will develop and fine-tune correlation rules, alerts, and dashboards to support SOC use cases. · ...
1 month ago
T&T | Cyber D&R | SIEM Admin Use Case Engineering | Deputy Manager |
Only for registered members
This role involves building and nurturing positive working relationships with teams and clients to exceed client expectations. The Threat Hunting Analyst proactively identifies hidden threats across enterprise environments using hypothesis-driven hunting techniques. ...
3 weeks ago
We are looking for a highly skilled and experienced L3 SOC Analyst to administer our Qradar system in Mumbai. · ...
4 weeks ago
+This is a SOC Analyst role that involves security monitoring and incident handling. · + ...
1 month ago
Job Title : Security Operations Center (SOC) Analyst · Job Purpose :L1 SOC Analyst XDR Platform - L1 SOC Analyst to provide 24x7 security monitoring and support for Extended Detection and Response (XDR) platform. This role is the first line of defense in identifying, triaging, a ...
2 days ago
JOB TITLE: · L2 Security Operations Center (SOC) Analyst · Number of Positions · One · JOB PURPOSE: · To act as a senior-level analyst in the 24x7 Security Operations Center (SOC), responsible for advanced security event triage, log analysis, threat investigation, and response co ...
2 days ago
This Security Operations Center role is responsible for monitoring and responding to security incidents across various layers including endpoints, cloud, email and network. · ...
1 month ago
This role ensures organizations identity infrastructure is protected from credential-based attacks by enforcing adaptive MFA Zero Trust policies and continuous authentication across hybrid and multi-cloud environments. · Deploy and integrate Silverfort with Active Directory Azure ...
3 weeks ago
The Silverfort Security Engineer Specialist is responsible for designing deploying managing and maintaining Silverfort Unified Identity Protection UIP platform. · Deploy integrate Silverfort with Active Directory Azure AD LDAP and cloud identity providers. · Configure maintain Si ...
1 month ago
We are seeking an experienced IT Infrastructure professional to lead, scale and secure the technology backbone of our fast-growing fintech organization. · ...
4 weeks ago
L3 SOC Analyst QRadar Admin for 7y+ experience in Vashi, Navi Mumbai. · ...
1 month ago
We are seeking an experienced Senior IT Infrastructure Professional to lead, · scale, · and secure our technology landscape.We require you to oversee infrastructure operations, · information security, · compliance audits cloud & on-premise systems data governance, · networking wh ...
1 month ago
We are seeking a Security Advisor to lead and support the integration of critical data sources into our security infrastructure. · Work with IT and business units to identify relevant data sources for security monitoring. · Onboard logs into the SIEM using data connectors. · ...
1 month ago