[Apply in 3 Minutes] SIEM Admin _ Hyderabad & Mumbai

We are hiring for SIEM Admin L2 & L3.

Experience : 5+ Years

Location : Mumbai & Hyderabad

Work Mode : Work from Office

JD :

This is a core technical IC role which requires candidate to be hands on and ability to deliver the below tasks independently.

• Ownership of SIEM platform in terms of administration and management ( should be currently performing this role)

1. Ensuring platform and service uptime

2. Efficient management of the platform to ensure proper performance.

3. Upgrade and updates (KBs) / patch as per OEM

4. Platform capacity management

5. Administration and management of underlying Infrastructure Layer

6. Log Source Integration to include development of custom parsers for non-supported log sources

7. Integration with other platforms like Threat Intelligence

8. Configuration of SOAR plugins

9. Advanced troubleshooting of the SIEM platform

10. Problem management. Working closely with OEM

11. Configuration of rules reports and dashboards based on inputs from monitoring team.

12. Documentation of RCAs for major incidents

1. Ability to interact and manage customer stakeholders in the context of platform management.

2. Good team working skills and communication.

1. Technology and skills

1. SIEM : LogRhythm OR other industry leading SIEM platforms

2. SOAR : SIEM native of any third party

3. Threat Intelligence and Brand Monitoring (Cyble, IzooLogic)

4. ISTM tools - Everest is preferred or any other industry leading product.

5. Scripting : Regex is mandatory.

6. OS : Windows and Linux (intermediate skills)

7. Good knowledge of security domain is mandatory

1. Working Window

1. Should be flexible to work in shifts and on demand for any weekend activities

1. Experience / Skills / Qualifications

1. Education Qualification – B.E / B.Tech / Msc / MCA / M.Tech / Bsc / BCA

2. Certifications