Application security support

Education Qualification: Bachelor's degree in Computer Science or related field or higher with minimum 3 years of relevant experience.
Position Description: We are seeking a proactive and detail-oriented SOC Application Support Specialist to join our Log Analytics & Cloud Support team. The ideal candidate will have hands-on experience with the administration and automation of SIEM tools, log management, performance monitoring, and security application incident resolution. Strong troubleshooting skills across Linux and Windows environments, coupled with foundational knowledge of cloud platforms and automation tools, are essential for this role.Key Responsibilities:Utilize Splunk for log analysis, dashboard creation, report generation, and SPL query writing.Manage and configure log ingestion pipelines via Cribl, winlogbeat, syslog, rsyslog, etc.Use monitoring tools like Zabbix to track system health, including CPU, memory, disk, and network utilization.Perform first-level triage and resolution of security application incidents and escalate as necessary.Conduct root cause analysis and troubleshooting across Windows and Linux operating systems.Collaborate with IT and cloud teams to monitor and secure assets on Azure, AWS, and GCP environments.Document security application incident response actions, generate reports, and contribute to playbook development.Leverage tools like Ansible and GitLab for automation and version control in support of SOC tasks.________________________________________Required Skills & Experience:Proven experience with SIEM platforms: ELK, Microsoft Sentinel, Splunk.Strong proficiency in Splunk (SPL queries, dashboards, alerts, reports).Hands-on experience with log management agents/tools (Cribl, winlogbeat, syslog variants).Proficiency in using monitoring tools such as Zabbix.Good understanding of system performance metrics (CPU, memory, disk usage).Strong troubleshooting skills in both Linux and Windows environments.Basic knowledge of cloud platforms Azure, AWS, and GCP.Familiarity with automation and versioning tools such as Ansible and GitLab.Solid understanding of the incident response lifecycle and best practices.________________________________________Preferred Qualifications:Certifications such as CompTIA Security+, Splunk Core Certified User, Microsoft SC-200, or equivalent.Experience working in SOC or cybersecurity operations environment.Good communication skills and ability to work collaboratively in a team setting.Life at CGI:It is rooted in ownership, teamwork, respect and belonging. Here, youll reach your full potential becauseYou are invited to be an owner from day 1 as we work together to bring our Dream to life. Thats why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our companys strategy and directionYour work creates value. Youll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertiseYoull shape your career by joining a company built to grow and last. Youll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizonsCome join our team, one of the largest IT and business consulting services firms in the worldYour future duties and responsibilitiesRequired qualifications to be successful in this roleTogether, as owners, lets turn meaningful insights into action.