12 Log Ingestion Jobs

Deploy and maintain SIEM platforms (Splunk, Elastic, QRadar). Integrate log sources, develop parsers, build correlation rules and dashboards. Collaborate with SOC analysts on alerts and triage. Automate log onboarding and high availability. Required Candidate profile 3-5 years SIEM deployment experience. Proficient with Splunk, Elastic, QRadar. Knowledge of incident response, scripting (Python/PowerShell), network protocols, and security standards.

SIEM (Security Information and Event Management): Configure, manage, and fine-tune SIEM tools for log ingestion, correlation rules, alerting, and reporting. Perform threat hunting, incident analysis, and security event investigations. Develop and maintain custom use cases to detect advanced threats. SOAR (Security Orchestration, Automation, and Response): Implement and maintain SOAR playbooks to automate security responses. Integrate SOAR with SIEM, threat intelligence, EDR, firewall, and email security solutions. Monitor SOAR workflows and fine-tune automation to optimize SOC operations. UEBA (User and Entity Behavior Analytics): Monitor behavioral analytics to detect insider threats, compr...

As a potential candidate for the Datadog role, your responsibilities will include: - Customizing and configuring Datadog agent YAML to enable various checks. - Building playbooks to automate agent installation & configuration. - Working with OpenTelemetry to extract key infrastructure metrics. - Modifying application code to enable traces and spans. - Enabling Digital Experience Monitoring for browser and mobile apps. - Creating and managing API and browser synthetic tests. - Handling log ingestion, indexing, parsing, and exploration. - Setting up pipelines, custom parsers, and archives for logs. - Applying Datadog tagging best practices for seamless filtering and grouping. - Integrating Dat...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NA Minimum 7.5 year(s) of experience is required Relevant Experiences - 7 years Must Educational Qualification : 15 years full time education Find below job description, kindly acknowledge with it, and let me know your interest by revert back with your updated resume, srilakshmi.sk@sigmacareers.in Roles & Responsib...

Job Summary: We are seeking a technically strong Security Analyst with hands-on expertise in SIEM platforms including IBM QRadar and LogRhythm . This position is critical in maintaining security operations by detecting, analyzing, and responding to cybersecurity threats across the enterprise. The ideal candidate will have deep knowledge in log source Integration, Log Collection and management, use-case creation, Alert setup, continuous optimization and correlation rule fine tuning, UEBA configuration, threat detection, Threat Hunting and experience in DFIR. Key Responsibilities: Security Monitoring & Investigation: Monitor and analyze events and alerts generated by QRadar and LogRhythm SIEM....

Sprinklr is the definitive, AI-native platform for Unified Customer Experience Management (Unified-CXM), empowering brands to deliver extraordinary experiences at scale across every customer touchpoint. By combining human instinct with the speed and efficiency of AI, Sprinklr helps brands earn trust and loyalty through personalized, seamless, and efficient customer interactions. Sprinklr's unified platform provides powerful solutions for every customer-facing team spanning social media management, marketing, advertising, customer feedback, and omnichannel contact center management enabling enterprises to unify data, break down silos, and act on real-time insights. Today, 1,900+ enterprises a...

Role: Sr Cloud Security Engineer Location: Pune/Mumbai Notice: Immediate Configure and onboard cloud log sources with proper parsing into the SIEM. Monitor and maintain log ingestion pipelines, troubleshooting issues as needed. Develop and tune detection rules aligned with MITRE ATT&CK for cloud threats. Create dashboards and reports for executive visibility and audits. Build playbooks for cloud threat response and recommend system improvements. Ensure alignment of use cases with evolving threat frameworks and cloud security trends.

As a Datadog Specialist with 6+ years of experience, your role will involve the following key responsibilities: - Customize and configure Datadog agent YAML to enable various checks. - Build playbooks to automate agent installation & configuration. - Work with OpenTelemetry to extract key infrastructure metrics. - Modify application code to enable traces and spans. - Enable Digital Experience Monitoring for browser and mobile apps. - Create and manage API and browser synthetic tests. - Handle log ingestion, indexing, parsing, and exploration. - Set up pipelines, custom parsers, and archives for logs. - Apply Datadog tagging best practices for seamless filtering and grouping. - Integrate Data...

As an entry-level Splunk Associate supporting managed detection and response (MDR) operations, you will play a vital role in log onboarding, dashboard creation, and incident correlation utilizing Splunk. Your key responsibilities will include working on Splunk data ingestion from various log sources such as Windows, Linux, and Firewall. You will assist in the development of dashboards, alerts, and scheduled reports. Additionally, you will provide support in troubleshooting indexers, search heads, and source configurations. It will also be part of your duties to document standard operating procedures (SOPs) and queries for internal knowledge sharing. To excel in this role, a basic understandi...

Are you ready to power the world's connections If you don't think you meet all of the criteria below but are still interested in the job, please apply. Nobody checks every box - we're looking for candidates who are particularly strong in a few areas and have some interest and capabilities in others. Design, develop, and maintain microservices that power Kong Konnect, the Service Connectivity Platform. Working closely with Product Management and teams across Engineering, you will develop software that has a direct impact on our customers" business and Kong's success. This opportunity is hybrid (Bangalore Based) with 3 days in the office and 2 days work from home. Implement, and maintain servi...

Job Role : Cyber Security Engineer--Work From Office Experience : 4 to 8 Yrs Key Skills: Security tools integration and management, Log ingestion, writing rules and polices in SIEM tool, USE case Creation Notice Period : 0 to 30 days Should be willing to work in Second shift Company: Cyber Towers, Quadrant 3, 3rd floor, Madhapur, Hyderabad -- 500081. Job Overview: Analyze and recommend improvements to network, system, and application architectures to enhance security. Research, design, and implement cybersecurity solutions that protect the organizations systems and products. Collaborate with DevOps, Platform Engineering, and Architecture teams to ensure security is embedded in the design and...

Job Summary: We are looking for a skilled Microsoft Sentinel SIEM Engineer to join our Cybersecurity Operations team. The ideal candidate will be responsible for the deployment, configuration, integration, and operational support of Microsoft Sentinel as a core SIEM platform, ensuring efficient threat detection, incident response, and security monitoring. Key Responsibilities: Design, implement, and manage Microsoft Sentinel for enterprise security monitoring. Develop and maintain analytic rules (KQL-based) and detection use cases aligned with MITRE ATT&CK. Integrate various log sources (on-prem and cloud) including Microsoft 365, Azure, AWS, endpoints, firewalls, etc. Create and manage play...