[Apply Now] SIEM Admin _ Hyderabad & Mumbai

We are hiring for SIEM Admin L2 & L3.

Experience : 5+ Years

Location : Mumbai & Hyderabad

Work Mode : Work from Office

JD :

This is a core technical IC role which requires candidate to be hands on and ability to deliver the below tasks independently.

• Ownership of SIEM platform in terms of administration and management ( should be currently performing this role)
• Ensuring platform and service uptime
• Efficient management of the platform to ensure proper performance.
• Upgrade and updates (KBs) / patch as per OEM
• Platform capacity management
• Administration and management of underlying Infrastructure Layer
• Log Source Integration to include development of custom parsers for non-supported log sources
• Integration with other platforms like Threat Intelligence
• Configuration of SOAR plugins
• Advanced troubleshooting of the SIEM platform
• Problem management. Working closely with OEM
• Configuration of rules reports and dashboards based on inputs from monitoring team.
• Documentation of RCAs for major incidents
• Other skills required
• Ability to interact and manage customer stakeholders in the context of platform management.
• Good team working skills and communication.
• Technology and skills
• SIEM : LogRhythm OR other industry leading SIEM platforms
• SOAR : SIEM native of any third party
• Threat Intelligence and Brand Monitoring (Cyble, IzooLogic)
• ISTM tools - Everest is preferred or any other industry leading product.
• Scripting : Regex is mandatory.
• OS : Windows and Linux (intermediate skills)
• Good knowledge of security domain is mandatory
• Working Window
• Should be flexible to work in shifts and on demand for any weekend activities
• Experience / Skills / Qualifications
• Education Qualification – B.E / B.Tech / Msc / MCA / M.Tech / Bsc / BCA
• Certifications
• CISSP or CISM is preferred.