Detection Engineer

Job Description

Number of Openings 3 ECMS ID in sourcing stage 530771 Assignment Duration 12 Months Total Yrs. of Experience 5-8 + experience in the Technology industry. Relevant Yrs. of experience 5+ years Detection Engineer Mandatory skills Experience in cybersecurity in a SOC and/or SIEM focused role. Demonstratable SIEM experience in creation of detection logic in Splunk and SOAR experience, including the design and build of automation playbooks Experience with Microsoft 365 Defender and Azure Sentinel services is highly desirable, including custom detection rules and policy configuration. Ability to produce clear and concise documentation, for both technical and non-technical stakeholders. Strong communication skills and the confidence to work both collaboratively and independently. Good to have experience in working on any of the scripting languages such as Python etc Your key accountabilities will include: Identifying and implementing detections within the SIEM platform (Splunk ES) to ensure high fidelity alerts to the SOC. Reviewing existing detections to identify improvements and recommendations to increase the fidelity of the alerts Scope security use cases from Cyber Threat Intelligence Advisories Designing, developing, and maintaining data visualisations for Splunk dashboards Actively contributing to the continuous improvement of detections and other supporting documentation. Gathering, analysing, and presenting data to track key performance indicators and weekly activities Secondary Skills Microsoft 365 Defender and Azure Sentinel services Domain Security Max Vendor Rate in Per Day (Currency in relevance to work location) 7000 INR Work Location given in ECMS ID Hyderabad and Pune Preferred WFO/WFH/Hybrid WFO Hybrid BG Check (Before OR After onboarding) Before Is there any working in shifts from standard Daylight (to avoid confusions post onboarding) YES/ NO No