Talent.com
This job offer is not available in your country.
Application Support Security

Application Support Security

CGIBangalore, India
8 days ago
Job description

Position Description :

We are seeking a proactive and detail-oriented SOC Application Support Specialist to join our Log Analytics & Cloud Support team. The ideal candidate will have hands-on experience with the administration and automation of SIEM tools, log management, performance monitoring, and security application incident resolution. Strong troubleshooting skills across Linux and Windows environments, coupled with foundational knowledge of cloud platforms and automation tools, are essential for this role.

Key Responsibilities :

  • Utilize Splunk for log analysis, dashboard creation, report generation, and SPL query writing.
  • Manage and configure log ingestion pipelines via Cribl, winlogbeat, syslog, rsyslog, etc.
  • Use monitoring tools like Zabbix to track system health, including CPU, memory, disk, and network utilization.
  • Perform first-level triage and resolution of security application incidents and escalate as necessary.
  • Conduct root cause analysis and troubleshooting across Windows and Linux operating systems.
  • Collaborate with IT and cloud teams to monitor and secure assets on Azure, AWS, and GCP environments.
  • Document security application incident response actions, generate reports, and contribute to playbook development.
  • Leverage tools like Ansible and GitLab for automation and version control in support of SOC tasks.

Required Skills & Experience :

  • Proven experience with SIEM platforms : ELK, Microsoft Sentinel, Splunk.
  • Strong proficiency in Splunk (SPL queries, dashboards, alerts, reports).
  • Hands-on experience with log management agents / tools (Cribl, winlogbeat, syslog variants).
  • Proficiency in using monitoring tools such as Zabbix.
  • Good understanding of system performance metrics (CPU, memory, disk usage).
  • Strong troubleshooting skills in both Linux and Windows environments.
  • Basic knowledge of cloud platforms – Azure, AWS, and GCP.
  • Familiarity with automation and versioning tools such as Ansible and GitLab.
  • Solid understanding of the incident response lifecycle and best practices.

    • Preferred Qualifications :

  • Certifications such as CompTIA Security+, Splunk Core Certified User, Microsoft SC-, or equivalent.
  • Experience working in SOC or cybersecurity operations environment.
  • Good communication skills and ability to work collaboratively in a team setting.

    • CGI is an equal opportunity employer. In addition, CGI is committed to providing accommodation for people with disabilities in accordance with provincial legislation. Please let us know if you require reasonable accommodation due to a disability during any aspect of the recruitment process and we will work with you to address your needs.

    Life at CGI :

    It is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…

    You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction

    Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise

    You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons

    Come join our team, one of the largest IT and business consulting services firms in the world

    Skills :

  • Security Architecture
  • Security Operations Center
  • Splunk
    • Create a job alert for this search

    Application Support • Bangalore, India