L3 Security Specialist - Cloud Security & DevOpsConfidential • Chennai, India
L3 Security Specialist - Cloud Security & DevOps
Confidential • Chennai, India
23 days ago
Job descriptionDesign, deploy, and manage enterprise SIEM platforms (Splunk, Azure Sentinel, IBM QRadar, LogRhythm) Develop and optimize correlation rules, alerts, and detection use cases Create custom parsers and data connectors for log ingestion from multiple sources Implement advanced threat hunting and analytics using SPL, KQL, or similar query languages Manage log retention, archival, and compliance requirements Integrate SIEM with SOAR platforms for automated incident response Tune alert thresholds to minimize false positives while maintaining detection effectiveness Generate security metrics, dashboards, and executive-level reports Conduct regular health checks and performance optimization of SIEM infrastructure Implement least privilege access and role-based access control (RBAC) Manage Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Privileged Access Management (PAM) Configure Azure AD, AWS IAM, Okta, and other identity providers Implement Just-In-Time (JIT) access and Privileged Identity Management (PIM) Conduct access reviews and entitlement management Implement data classification and Data Loss Prevention (DLP) solutions Manage encryption at rest and in transit across all platforms Configure key management systems (KMS) and Hardware Security Modules (HSM) Implement database security controls and monitoring Design data masking and tokenization strategies Deploy and manage EDR / XDR solutions (CrowdStrike, Microsoft Defender, Carbon Black) Implement anti-malware, host-based firewalls, and security agents Manage mobile device management (MDM) and endpoint compliance Configure application whitelisting and device control policies Lead enterprise vulnerability assessment programs Manage scanning tools (Qualys, Nessus, Rapid7, Tenable) Prioritize vulnerabilities using CVSS scoring and business context Track remediation efforts and report on security posture Conduct regular penetration testing and red team exercises Leverage threat intelligence feeds and platforms (MISP, ThreatConnect, Recorded Future) Conduct proactive threat hunting using MITRE ATT&CK framework Analyze indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) Develop custom threat detection rules and signatures Participate in threat intelligence sharing communities Lead security incident response following NIST guidelines Conduct digital forensics and malware analysis Manage security operations center (SOC) escalations Develop and maintain incident response playbooks Coordinate with external stakeholders during breaches Implement CSPM tools (Prisma Cloud, CloudGuard, Azure Security Center) Continuously monitor cloud configurations for security risks Remediate misconfigurations and security drift Enforce cloud security baselines and CIS benchmarks Ensure compliance with ISO 27001, SOC 2, GDPR, HIPAA, PCI-DSS, NIST, FedRAMP Conduct security audits and prepare compliance reports Perform risk assessments and develop risk mitigation strategies Manage security governance frameworks Develop and maintain security documentation, runbooks, and procedures Azure : Azure Security Center, Microsoft Defender for Cloud, Azure Sentinel, Azure AD, Azure Policy, Azure Firewall, Application Gateway, NSGs, Azure Monitor, Azure Key Vault, Microsoft Defender for Identity AWS : AWS Security Hub, GuardDuty, AWS IAM, Security Groups, AWS WAF, CloudTrail, Config, Inspector, Macie, KMS, CloudWatch, Systems Manager, AWS Shield SIEM Platforms : Expert-level proficiency in Splunk Enterprise Security, Azure Sentinel (Microsoft Sentinel), IBM QRadar, LogRhythm, Elastic SIEM Query Languages : SPL (Splunk), KQL (Kusto Query Language), SQL for security analytics Log Management : Log aggregation, parsing, normalization from diverse sources (Windows, Linux, cloud, network devices, applications) Correlation & Analytics : Creating correlation searches, threat detection rules, behavioral analytics SOAR Integration : Integration with Security Orchestration and Automated Response platforms (Splunk SOAR, Azure Logic Apps, Palo Alto Cortex XSOAR) Threat Detection : Building use cases for ATT&CK framework, anomaly detection, user behavior analytics (UEBA) Vulnerability Management : Qualys, Nessus, Rapid7, Tenable, OpenVAS EDR / XDR : CrowdStrike Falcon, Microsoft Defender for Endpoint, Carbon Black, SentinelOne CASB : Microsoft Defender for Cloud Apps, Netskope, Zscaler DLP : Symantec DLP, Microsoft Purview, Forcepoint PAM : CyberArk, BeyondTrust, Thycotic Secret Server API Security : Apigee, Kong, AWS API Gateway security NIST Cybersecurity Framework (CSF) NIST SP 800-53, 800-171 CIS Benchmarks and Controls OWASP Top 10 & OWASP ASVS MITRE ATT&CK Framework Zero Trust Architecture (NIST SP 800-207) Cloud Security Alliance (CSA) Cloud Controls Matrix ISO 27001 / 27002 PCI-DSS, HIPAA, GDPR, SOC 2 Certified Cloud Security Professional (CCSP) GIAC Security Essentials (GSEC) or GIAC Certified Incident Handler (GCIH) Certified Ethical Hacker (CEH) or Offensive Security Certified Professional (OSCP) Certified Kubernetes Security Specialist (CKS)
Experience Required
8-12 years in Information Security with minimum 5 years in cloud security and SIEM operations
Cloud Security Management
- Design, implement, and maintain security architectures across Azure and AWS multi-cloud environments
- Lead security assessments, vulnerability management, and penetration testing initiatives
- Architect and enforce security policies, standards, and best practices for cloud infrastructure
- Manage identity and access management (IAM) policies, roles, and permissions across both platforms
- Implement and maintain security monitoring, logging, and SIEM solutions
- Lead incident response activities and conduct root cause analysis for security events
SIEM Operations & Security Monitoring
Major Security Areas
1. Identity & Access Management (IAM)
2. Data Security & Encryption
3. Endpoint Security
4. Vulnerability Management
5. Threat Intelligence & Hunting
6. Incident Response & Forensics
7. Cloud Security Posture Management (CSPM)
8. Compliance & Risk Management
Requirements
Required Skills & Expertise
Cloud Platforms
SIEM & Security Monitoring
Security Tools & Technologies
Security Frameworks & Standards
Highly Preferred certifications :
Skills Required
carbon black , Ibm Qradar, Dlp, Nessus, Sql, logrhythm , crowdstrike , SPL, Owasp, Splunk, Cyberark, Azure, Qualys, Aws
Create a job alert for this search
Security Specialist • Chennai, India
Related jobs
Cloud Security
CodeVyasa • Chennai, Tamil Nadu, India
The candidate should have a minimum of.CodeVyasa is a mid-sized product engineering company that works with top-tier product / solutions companies such as.
McKinsey, Walmart, RazorPay, Swiggy.We are a...Show more
Last updated: 4 days ago • Promoted
Cloud Security with Devops
Tata Consultancy Services • Chennai, Tamil Nadu, India
Role : Cloud Security with Devops.Desired Experience Range : 4+ years.Location : Bangalore, Chennai, Mumbai, Hyderabad,Pune.
Need more AWS native experience (Security + Infrastructure.IAM, Organizatio...Show more
Last updated: 18 hours ago • Promoted • New!
Lead Security Engineer
Arcana • Chennai, IN
As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between.
You'll design and enforce policies, automate controls, and harden...Show more
Last updated: 30+ days ago • Promoted
Cloud Security Engineer
Tata Consultancy Services • Chennai, Tamil Nadu, India
Need more AWS native experience (Security + Infrastructure.IAM, Organizations, KMS, Cert Manager, Parameter store, SSM / Systems Manager, Secrets Manager, Guard duty, Inspector, Access Analyzer, Clou...Show more
Last updated: 8 days ago • Promoted
Codincity Digital Technologies - Azure Security Engineer
CODINCITY DIGITAL TECHNOLOGIES PRIVATE LIMITED • Chennai
About the Role : We are seeking an experienced Azure Security Engineer to design, implement, and manage cloud security policies and compliance framew...Show more
Last updated: 30+ days ago • Promoted
DevSecOps
Capgemini • Chennai, IN
Proficiency in securing CI / CD workflows using Github Actions, with hands-on experience designing, implementing, and maintaining automated pipelines.
Strong expertise in integrating security measures...Show more
Last updated: 18 days ago • Promoted
SquareShift - Technical Lead - DevOps & Cloud Security
SQUARESHIFT TECHNOLOGIES PRIVATE LIMITED • Chennai
Job Title : Tech Lead DevOps & Cloud Infrastructure Location : Chennai Experience Required : 8 to 12...Show more
Last updated: 30+ days ago • Promoted
Security Operations Center Manager - Vulnerability Management
MNR Solutions • Chennai
Description : Job Summary : - We are seeking an experienced SOC Manager (L4) to lead our Security Operations Center.The candidate will oversee mon...Show more
Last updated: 30+ days ago • Promoted
Security Operations Center Architect
Exela Technologies • Chennai, Tamil Nadu, India
Lead and mentor the incident response (IR) team, fostering a culture of continuous improvement and collaboration.Develop, implement, and maintain the organization’s incident response strategy, proc...Show more
Last updated: 22 days ago • Promoted
Security IAM Engineer
Tata Consultancy Services • Greater Chennai Area, India
Required Technical Skill Set - GCP Identity and Access Management (IAM), Access Policies, Security Protocols, Networking Troubleshooting.
Location - Ahmedabad & Chennai.A clear understanding of acce...Show more
Last updated: 6 days ago • Promoted
Tech Lead - DevOps & Cloud Security
Confidential • Chennai, India
Job Title : Tech Lead - DevOps & Cloud Infrastructure.Experience Required : 8 to 12 Years.Employment Type : Full-Time / Permanent.
We are looking for an experienced and strategic DevOps Tech Lead to dr...Show more
Last updated: 27 days ago • Promoted
Fourkites - Staff DevSecOps Engineer - Cloud Security
FourKites India Pvt Ltd • Chennai
We are seeking an experienced DevSecOps Engineer with a strong background in cloud security, infrastructure management, and secure software development.
The ideal candidate will have extensive hands...Show more
Last updated: 30+ days ago • Promoted
Senior Cloud Security Architect
Claranet India • Chennai, IN
Founded at the beginning of the dot.CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business.
Since then, Claranet has grown from an Internet Service Provider (ISP)...Show more
Last updated: 2 days ago • Promoted
AWS Security Engineer - Vulnerability Management
Firstcareercentre • Chennai
Description : - Design, implement, and manage AWS security solutions in alignment with organizational and regulatory requirements.
Deep expertise in AWS native securit...Show more
Last updated: 30+ days ago • Promoted
Device Management L3 Support Engineer
OA Compserve Pvt ltd • Chennai
Description : Job Opening - Details Position : Device management L3 Support Engineers ...Show more
Last updated: 30+ days ago • Promoted
L2 / L2.5 Security Operations Center (SOC) Analyst
TOCUMULUS • Chennai, India
We are seeking a skilled and detail-oriented L2 / L2.Security Operations Center (SOC) Analyst to join our Security Operations team.
This role sits at the critical intersection of threat detection, inc...Show more
Last updated: 8 hours ago • Promoted • New!
DevSecOps Engineer - Cloud Infrastructure Security
Excelencia I-Tech Consulting Pvt Ltd • Chenn
Experience Level : 4+ Years Job Summary : We are seeking an experienced DevSecOps Engineer with a strong background in integra...Show more
Last updated: 9 days ago • Promoted
Senior Security Engineer
Standard Chartered Bank • Chennai, Tamil Nadu, India
This job is with Standard Chartered Bank, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community.
Please do not contact the recruiter directly....Show more
Last updated: 30+ days ago • Promoted