-
Logrythm
3 days ago
Quess IT Staffing Bengaluru, India**About Us** · "Magna Infotech, now Quess IT Staffing, is India's largest IT staffing company with over 20 years of experience in staffing IT professionals in 300+ companies across levels and skillsets. Our 10,000+ associates deployed in 80+ cities and towns are proficient in ove ...
-
Bengaluru
1 day ago
Qualitest Bengaluru, India· Acknowledge, analyse, and validate incidents triggered from correlated events through SIEM solution · oCollection of necessary logs that could help in the incident containment and security investigation · oEscalate validated and confirmed incidents to SOC Lead · oUndertake fir ...
-
Bengaluru
1 day ago
Qualitest Bengaluru, India· **Expectations**: · Exp 3-5 years SOC Engineer will be responsible for monitoring, reporting, and escalating events to our SOC Leads. · The primary function of this position is to monitor the analytics tools, perform alert management, and initial incident qualification. · This ...
-
soc l3
3 days ago
DXC Technology Bengaluru, Karnataka, IndiaSOC Senior Analyst with very good experience on carrying out in-depth analysis and investigation of a security alert / incident, able to create run book and playbook, work on creation of new analytics as per requirement of client environment. · CSOC / SIEM detection development a ...
-
Cyber Security Intern
1 day ago
GCID Bengaluru, India**Duties & Responsibilities**: · - Log analysis · - Machine reimaging (macOS and Windows) · - Malware/Virus removal and analysis · - Phishing mailbox monitoring and remediation · - Threat feed monitoring and updating · - SIEM tool incident monitoring · - SIEM tool dashboard/repor ...
-
Cybersecurity Architect
2 days ago
ALSTOM Bengaluru, Karnataka, IndiaReq ID:446153 · We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digit ...
-
Cyber Security Instructional Trainer
2 days ago
Securonix Bengaluru, IndiaSecuronix is leading the evolution of SIEM for today's hybrid cloud, data-driven enterprises. Securonix Unified Defense SIEM provides organizations with content-driven threat detection, investigation, and response (TDIR) solution built with a highly scalable data cloud and a unif ...
-
Sioc Security Specialist-l3
6 hours ago
IBM Bengaluru, India**Introduction** · **Your Role and Responsibilities** · Who you are: · As Security Services Specialist, you are responsible for managing day to day operations of Security Device Management SIEM, Arcsight, Qradar, incident response, threat hunting, Use case engineering, SOC analys ...
-
End Point Security
2 days ago
Kaapro Management Solutions Bengaluru, IndiaOpening: 1 Nos.- Job ID: Employment Type: Full Time- Reference: · - Work Experience: 6.0 Year(s) To 8.0 Year(s)- CTC Salary: 1.00 LPA TO 14.00 LPA- Function: Other- Industry: Other- Location: · - Bengaluru/bangalore · Posted On: 18th Oct, 2023 · **Designation: End Point Security* ...
-
Partner Service Architect
2 days ago
Palo Alto Networks Bengaluru, Karnataka, India**Company Description** Our Mission** · At Palo Alto Networks everything starts and ends with our mission: · Being the cybersecurity partner of choice, protecting our digital way of life. · Our vision is a world where each day is safer and more secure than the one before. We are ...
-
Waf (Akamai) 9 to 12 Years Pan India
3 days ago
Capgemini Bengaluru, IndiaWeb Application Security: Engineering, deployment, and operations of Web Application Firewall security solutions and integration of those platforms with other security solutions as required. · - Performing hands-on Web Application Firewall deployment, configuration, policy fine-t ...
-
Security Architect
1 day ago
Zwayam Bengaluru, India**Expectation from the applicant**: · - Strong security architecture skills - Experience in designing, implementing, and delivering security for cloud native, distributed computing and architectural solutions with a principle of "Secure by Design". · - Deep knowledge of security ...
-
Incident Responder
2 days ago
AGCTS Bengaluru, IndiaIn addition to real-time threats, you must be able to research, document, and report on emerging cybersecurity trends facing retail industries worldwide. · - You must be able to demonstrate strong leadership abilities in a large corporate environment, as well as able to understan ...
-
Solutioning and Presales
3 days ago
3i Infotech Bengaluru, IndiaPosted Date : August 01,2023 · 10 to 18 yrs (Experience) · Not Disclosed · **Location**: · India, Karnataka, Bengaluru · **Skill Required**: · Presales · **Overview**: · **In this role, you will work with cutting edge technology (SASE), redefining the future of access & network s ...
-
Infrastructure Security Architect
1 day ago
Unisys Bengaluru, India**Job Description** We Believe in Better** · We are a global information technology company that builds high-performance, security-centric solutions that can help change the world. Enhancing people's lives through secure, reliable advanced technology is our vision. · Our associat ...
-
SOC Operator
2 days ago
NTT Ltd. Bengaluru, IndiaNTT is a leading global IT solutions and services organisation that brings together people, data and things to create a better and more sustainable future. · In today's 'iNTTerconnected' world, connections matter more now than ever. By bringing together talented people, world-cla ...
-
Cortex Solutions Architect
2 days ago
Palo Alto Networks Bengaluru, IndiaCompany Description · **Our Mission** · At Palo Alto Networks everything starts and ends with our mission: · Being the cybersecurity partner of choice, protecting our digital way of life. · We have the vision of a world where each day is safer and more secure than the one before. ...
-
Cortex Solutions Architect
2 days ago
Palo Alto Networks Bengaluru, IndiaCompany Description · **Our Mission** · At Palo Alto Networks everything starts and ends with our mission: · Being the cybersecurity partner of choice, protecting our digital way of life. · Our vision is a world where each day is safer and more secure than the one before. We are ...
-
La - Network Vpn L3
1 day ago
CGI Bengaluru, India**Position**: System Engineer/Senior System Engineer · **Experience**: 9-14 Years · **Category**: Infrastucture · **Main location**: India, Karnataka, Bangalore · **Position ID**: J · **Employment Type**: Full Time · **Qualification**: Bachelor's degree in any field or higher wi ...
-
Isso Security Architect
1 day ago
Pratt & Whitney Bengaluru, India**Date Posted**: · **Country**: · India · **Location**: · North Gate Business Park Sy.No 2/1, and Sy.No 2/2, KIAL Road, Venkatala Village, Chowdeshwari Layout, Yelahanka, Bangalore, Karnataka 560064 · **Position Role Type**: · Unspecified · **Job Title**: Information Systems Secu ...
SIEM Engineer - Bengaluru, India - Aceseekers
Description
Job Description :
Experience :
Years
1) As a SIEM Engineer you will be managing and providing SIEM health and operational support, including supporting architecture changes, tool deployments and advanced content development.
2) Perform SIEM configuration management, and troubleshooting, addressing complex issues and day to day operations management
3) Onboard security log data sources and develop new and custom parsers
4) Perform SIEM architecture assessments, content baseline assessment and design reviews
5) Deliver SIEM advisory support and education to other SOC and technology management personnel
6) Help define, implement and monitor key risk indicators and key performance indicators (KRIs/KPIs)
7) Keep abreast of latest IT security, regulatory and compliance trends to support various risk and data models
8) Security information and event management (SIEM) Use Case content functional and quality testing
9) Developing actionable use cases to detect, triage, investigate and remediate based on latest threat actor trends, including actual technical implementation of parsing log sources creating, validating and testing alerting queries to reduce false positives.
10) Enhancing and documenting existing SOC processes to increase centralized visibility in order to identify suspicious activity to reduce the mean time to detect and respond to cyber threats.
11) Assist in Use Case Roadmap development and update Use Cases in Use Case Repository
12) Coordinate with Content Engineers to support advanced Use Case development (Use Case from Roadmap as well as hunting related Use Cases)
13) Help maintain content development/deployment baseline across clients based on the maturity of the client environment as well as the latest trends in security
14) Review system security plans, network diagrams, and vulnerability and patching requirements
15) Develop scripts to simplify data collection and automate data onboarding tasks
16) Provide 24/7 on-call support (as needed)
17) Coordinate with various technical groups and attend in-person client meetings
18) Build relationships with client counterpart (i.e. Client Lead Security Engineer)
Required skills :
1) Bachelor's degree is required. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology.
2) 4 years' experience in security information and/or technology engineering support.
3) Certified Information Systems Security Professional (CISSP), Certification in Certified Intrusion Analyst (GIAC), Continuous Monitoring (GMON), Certified Ethical Hacker (CEH) or equivalent
4)
Extensive experience in security technologies such as:
Security information and event management (SIEM), IDS/IPS, Data Loss Prevention (DLP), Proxy, Web Application Firewall (WAF), Endpoint detection and response (EDR), Anti-Virus, Sandboxing, network- and host- based firewalls, Threat Intelligence, Penetration Testing, etc.
5) Knowledge of Advanced Persistent Threats (APT) tactics, techniques and procedures6) Understanding of possible attack activities such as network probing/ scanning, DDOS, malicious code activity, etc.
7) Understanding of common network infrastructure devices such as routers and switches
8) Understanding of basic networking protocols such as TCP/IP, DNS, HTTP
9) Detailed knowledge in system security architecture and security solutions
)