40 Log Management Jobs

About the Role We are seeking a skilled SIEM Administrator to manage and optimize different SIEM solutions. The ideal candidate will be responsible for system administration, log integration, troubleshooting, Deployment, Implementation and maintaining security posture for the organization. Key Responsibilities SIEM Administration: Install, configure, maintain, and upgrade SIEM components. (IBM Qradar SIEM, DNIF, Splunk & Securonix). Log Management: Onboard, parse, and normalize logs from various data sources (firewalls, servers, databases, applications, etc.) Custom log source integration and parser development. System Monitoring & Troubleshooting: Ensure SIEM tools are functioning optimally. Monitor & regular health check perform for SIEM tools. troubleshoot system errors and resolve performance issues. Conduct regular performance tuning and capacity planning Perform root cause analysis for system failures & performance issues. Optimize system performance and storage management for SIEM Integration & Automation : Integrate third-party security tools (firewalls, EDR, threat intelligence feeds) with SIEM. Compliance & Audits: Ensure log retention policies comply with regulatory standards. Develop & enforce SIEM access controls & user roles/permissions. Documentation & Training: Document system configurations, SOP’s & troubleshooting documents. Prepare monthly/ weekly reports and PPT, onboarding documentation as per business/ client requirement. Dashboard & Report Development: Create & maintain custom dashboards & reports Optimize searches & reports for performance and efficiency. Other Knowledge Base: Hands on experience with Linux OS & Windows OS Basic to mediator level knowledge in networking skills Should be familiar with Azure, AWS or GCP products Required Skills & Qualifications: B.E/B.Tech degree in computer science, Cybersecurity, or related field (preferred). 1-3 years experience as Soc Admin Strong knowledge of SIEM architecture, log sources, and event correlation. Proficiency in log management, regular expressions, and network security concepts. Experience integrating SIEM with various security tools (firewalls, IDS/IPS, antivirus, etc.). Scripting knowledge (Python, Bash, or PowerShell) is a plus. Training or Certificate on Splunk or IBM Qradar Preferred. Soft Skills: Strong analytical and problem-solving skills. Excellent communication and documentation abilities. Ability to work independently and in a team. Must Have Skills: Hands-on experience with SIEM tools like IBM QRadar, Splunk, Securonix, LogRhythm, Microsoft Sentinel, DNIF etc. Proficiency in IBM Qradar & Splunk administration Configuring, maintaining, and troubleshooting SIEM solutions. Log source integration, parsing, and normalization. Strong knowledge of TCP/IP, DNS, HTTP, SMTP, FTP, VPNs, proxies, and firewall rules. Familiarity with Linux and Windows system administration.

Role: Service desk lead Do: - To support the service desk agents in prompt delivery & customer service - Advise and collaborate with the agents on current issues and works toward the resolution of tickets - Manage and coordinate escalated work orders from the ServiceDesk team that requires additional troubleshooting and follow-up - Coordinate with other IT teams as appropriate for closure of any escalated ticket - Act as a liaison between Service Desk and other teams to ensure effective communication between teams - To provide liaison and governance at both internal & client levels - Undertake a weekly review of the First Line Service Desk call queues to ensure no unauthorized changes & mitigation of escalations - Measure and report on service delivery performance metrics including customer satisfaction surveys and the incident tickets - Lead in the development of good customer service practices across the service desk - Produce statistics and management reports of the service desk to client & management - Communicate all process related changes and technical updates to the team within specific timelines to ensure adherence to service desk guidelines - Capacity planning and capability development - Conduct capacity planning exercise to provide number of agents, skill levels to meet the Account Service Desk process fulfilment - Conduct shift planning to meet the service requirements of the client as per SLAs agreed - Perform briefings to Service Desk agents on changes or deployments that may affect volumes at the Service Desk - Assist SD agents by providing first line support when workloads are high, or where additional

Role: Service desk lead Do: - To support the service desk agents in prompt delivery & customer service - Advise and collaborate with the agents on current issues and works toward the resolution of tickets - Manage and coordinate escalated work orders from the ServiceDesk team that requires additional troubleshooting and follow-up - Coordinate with other IT teams as appropriate for closure of any escalated ticket - Act as a liaison between Service Desk and other teams to ensure effective communication between teams - To provide liaison and governance at both internal & client levels - Undertake a weekly review of the First Line Service Desk call queues to ensure no unauthorized changes & mitigation of escalations - Measure and report on service delivery performance metrics including customer satisfaction surveys and the incident tickets - Lead in the development of good customer service practices across the service desk - Produce statistics and management reports of the service desk to client & management - Communicate all process related changes and technical updates to the team within specific timelines to ensure adherence to service desk guidelines - Capacity planning and capability development - Conduct capacity planning exercise to provide number of agents, skill levels to meet the Account Service Desk process fulfilment - Conduct shift planning to meet the service requirements of the client as per SLAs agreed - Perform briefings to Service Desk agents on changes or deployments that may affect volumes at the Service Desk - Assist SD agents by providing first line support when workloads are high, or where additional

Role: The purpose of this role is to the first point of contact for the B2B users who call Wipro Service Desk to troubleshoot appropriate end user issues in line with Wipros Service Desk objectives Do: Be responsible for primary user support and customer service Respond to queries from all calls, portal, emails, chats from the client Become familiar with each client and their respective applications/ processes Learn fundamental operations of commonly-used software, hardware and other equipment Follow standard service desk operating procedures by accurately logging all service desk tickets using the defined tracking software Ensure that the scorecard is maintained as per SoW with respect to TAT, SLA & hits Manage all queries or escalate if not resolve as per the defined helpdesk policies and framework Regular MIS & resolution log management on queries raised Record events and problems and their resolution in logs Follow-up and update customer status and information Pass on any feedback, suggestions, escalations by customers to the appropriate internal team Identify and suggest improvements on processes, procedures etc. Deliver: No. Performance Parameter Measure 1. Service Desk Delivery Adherence to TAT, SLA as per SoW Minimal Escalation Customer

Wipro Limited (NYSEWIT, BSE507685, NSEWIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients’ most complex digital transformation needs. Leveraging our holistic portfolio of capabilities in consulting, design, engineering, and operations, we help clients realize their boldest ambitions and build future-ready, sustainable businesses. With over 230,000 employees and business partners across 65 countries, we deliver on the promise of helping our customers, colleagues, and communities thrive in an ever-changing world. For additional information, visit us at www.wipro.com. About The Role _x000D_ Role Name/Title Devops Engineer Expected start date tentative 1st April 2025 Rate including mark up 100 K - 110 K /M Work Location – pls mention city and preferably office address as well Pune Panel names/email ID mohit.malik1@wipro.com Workplace Type(Remote/Hybrid/Onsite)? If Hybrid, how many days onsite & offsite? Onsite all 5 days Years of exp needed 3+ years ? _x000D_ Note - candidate must currently have 3+ yrs of experience specifically in Linux administration (not cloud/AWS) and kubeadm Kubernetes. should also have basic knowledge of Ansible. ask the candidate below questions for shortlisting: 1. R u working in Linux administration (not cloud) and Kubernetes for over 3 years as of today? - Job Profile: Devops Engineer (Experience 3+ years required) - Roles & Responsibilities: Managing Linux administration and troubleshooting Managing cloud infrastructure including monitoring cloud based applications Basic configuration and support of cloud services Managing Kubernetes clusters, ensuring the smooth operation of containerized applications. Managing CI/CD Pipelines, monitoring and log management Optimizing the performance of Kubernetes environment. Installing, configuring, maintaining Linux operating systems. Shell scripting Managing and maintaining virtualized environments using hypervisors like VMware, KVM etc. Troubleshooting within SLA Coordination and Communication Compliance and Security - Skills 2+ years of experience in DevOps Expertise in Kubernets (Kubeadm), Docker, containers, Jenkins and Ansible Strong Knowledge of Linux administration and shell scripting. Experience with CI/CD Pipelines, monitoring and log management Linux operating systems private cloud hypervisors. ? _x000D_ - Location Wipro Limited Rajiv Gandhi Infotech Park, - 24/7 Operations (Yes/No)Yes - General Shift (Yes/No) No, It is rotation shift - All Shift Timings: As per roster ? _x000D_ ? _x000D_ Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

About Us At SentinelOne, were redefining cybersecurity by pushing the limits of whats possible?leveraging AI-powered, data-driven innovation to stay ahead of tomorrows threats From building industry-leading products to cultivating an exceptional company culture, our core values guide everything we do Were looking for passionate individuals who thrive in collaborative environments and are eager to drive impact If youre excited about solving complex challenges in bold, innovative ways, wed love to connect with you Who are we The Data team is tasked with providing a world-class data platform that enables unrivalled cost, performance, and scalability for SentinelOne and our customers The exponential growth in volumes of data, users of data, and types of data calls for a new modern architecture that addresses the new data requirements for enterprise organizations Help us get this platform into the hands of customers and support them in their mission to affordably collect and retain their most critical asset data SentinelOne is shaping the converged future of security and data through its unified data platform This is a unique opportunity to operate in an emerging ?startuplike environment within SentinelOne to build and scale our data business beyond just security use cases What are we looking for We are looking for a team member who puts the customer first and is passionate about solving problems with creativity, compassion, and technical acumen You will need to bring a combination of technical, business, strategic and problem-solving skills to the team to support pre-sales efforts and as a data subject matter expert to the larger SentinelOne team Looking for an individual who is smart, passionate about data, and who brings a sense of joy and teamwork to everything they do As a Sr Solutions Engineer, you will illustrate SentinelOne's value to prospective customers We need a self-starter who excels in a high-paced startup environment and thrives on pitching revolutionary technology to many areas of an organisation, including C-level executives, security engineers, IT operations, DevOps, and Engineering professionals They should be willing to ?wear many hats? and step up and drive solutions to problems related to external and internal needs This individual will be instrumental in accelerating our sales, strategic initiatives, and growing SentinelOne What skills and knowledge should you bring 5+ years of experience as a Solutions (Sales) Engineer or Architect BS/BA degree or equivalent technical experience is desired, but love a well-rounded candidate with a broad range of interests and talents Strong background with big data platforms (Cassandra, Hadoop, etc-), data lakes (Snowflake, DataBricks), streaming analytics (Kafka), log management (ElasticSearch, SumoLogic, etc-), or SIEM (Splunk, Devo, Qradar, Exabeam, etc-) Some code writing proficiency is desired (C/C++, Shell, Perl, Python) Experience with RegEx and writing parsers Background in cloud providers (AWS, Azure, Google)and technologies such as Kubernetes Ability to demonstrate product value and use cases, both customer-specific and generic Demonstrable experience in objection handling and positioning against competitive or alternative technologies, including how to transition to new data pipelines Use concise written and oral communication skills to effectively lead business and technical presentations, demonstrations, and conversations with both executives and technical audiences Fluency in English is required Must have demonstrable experience successfully selling to mid-to-large customers and working across an organisation to get technical buy-in and acceptance Drive the Evaluation/POC through a defined process Provide timely consultation and build a strong relationship with the technical buyer or champion Provide 1st-level technical support throughout the sales process with involvement as it is transitioned to customer success Availability to travel to visit prospects and customers (usually no more than 20-25% and as required) What will you do The principal responsibilities for this position are to generate revenue from Strategic Accounts across the region through following up on multiple lead sources, developing new clients and selling directly to customers while leveraging our channel community In this position, you will: Run a sophisticated sales process from prospecting to closure Partner with our channel team to drive both net new and recurring revenue Partner with channel managers to build pipeline and grow the assigned territory Become an insider within the Cyber Security Industry and become an expert in SentinelOne products Stay well educated and informed about SentinelOne's competitive landscape and how to sell the value of our solutions and services when compared to the relevant competitors in the Next Generation Endpoint market space Consistently meet or exceed sales quotas Why us You will be joining a cutting-edge company where you will tackle extraordinary challenges and work with the very best in the industry Health Insurance Industry-leading gender-neutral parental leave Paid Company Holidays Paid Sick Time Employee stock purchase program Employee assistance program Gym membership reimbursement Wifi/Cell phone reimbursement Numerous company-sponsored events, including regular happy hours and team-building events SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics SentinelOne participates in the E-Verify Program for all U S based roles Show more Show less

Role & responsibilities Primary Skills: SIEM: Platform Engineering, Log Integration, SIEM Reporting, Production Management. Secondary Skills: Identification of various security tools and technologies to enhance the effectiveness of security operations. SOC Lead/L3 Responsibilities: Lead and manage all high-priority and critical security incidents, including end-to-end incident management. Provide support, assistance, and guidance to L1/L2 teams in handling complex issues and incidents. Lead and participate in the study and proof of concept (POC) of tools and technologies that align with the security roadmap. Serve as an expert in one or two key security technologies/tools globally and be part of the global SOC L3/Experts team. Example areas include Threat Hunting, Forensic Analysis, IPS, EDR, DLP, etc. Contribute to the risk detection management approach, consistent with the SG MITRE Matrix and other relevant industry standards. Provide analysis support for complex investigations and improve reaction procedures, run book definitions, and enhancements. Support analyses on cybersecurity technical plans, analysis approaches, and incident management. Identify various security tools and technologies to enhance the effectiveness of security operations. Identify security gaps, develop mitigation strategies, implement solutions, and track progress until closure. Collaborate with various regional SOC and CERT teams on security aspects and incidents as required.

Provide L3 support for applications written in GoLang, ensuring high availability and reliability. Analyze application behavior, parse system/application logs, and troubleshoot issues to identify and resolve root causes. Collaborate with development teams to resolve bugs and implement fixes or workarounds where needed. Enhance support scripts to automate and streamline log analysis and issue detection. Maintain knowledge base articles and documentation for known issues, fixes, and standard operating procedures. Support deployment and release activities, ensuring smooth transition of code to production environments. Engage with stakeholders to gather issue details, communicate resolutions, and set proper expectations. Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Strong hands-on experience in GoLang, particularly in understanding and debugging Go applications. Solid understanding of log structures, log parsing, and log management tools. Strong debugging and problem-solving abilities in complex environments. Familiarity with microservices, REST APIs Ability to work in a fast-paced environment and handle critical production issues with urgency. Excellent communication and collaboration skills

Role Purpose The purpose of this role is to the first point of contact for the B2B users who call Wipro Service Desk to troubleshoot appropriate end user issues in line with Wipros Service Desk objectives Do 1. Be responsible for primary user support and customer service a. Respond to queries from all calls, portal, emails, chats from the client b. Become familiar with each client and their respective applications/ processes c. Learn fundamental operations of commonly-used software, hardware and other equipment d. Follow standard service desk operating procedures by accurately logging all service desk tickets using the defined tracking software e. Ensure that the scorecard is maintained as per SoW with respect to TAT, SLA & hits f. Manage all queries or escalate if not resolve as per the defined helpdesk policies and framework 2. Regular MIS & resolution log management on queries raised a. Record events and problems and their resolution in logs b. Follow-up and update customer status and information c. Pass on any feedback, suggestions, escalations by customers to the appropriate internal team d. Identify and suggest improvements on processes, procedures etc Deliver No Performance Parameter Measure 1 Service Desk Delivery Adherence to TAT, SLA as per SoW Minimal Escalation Customer Experience 2 Personal Attendance Documentation etc Mandatory Skills: SD - Remote Desktop Support.

Role: Service desk lead Do: - To support the service desk agents in prompt delivery & customer service - Advise and collaborate with the agents on current issues and works toward the resolution of tickets - Manage and coordinate escalated work orders from the ServiceDesk team that requires additional troubleshooting and follow-up - Coordinate with other IT teams as appropriate for closure of any escalated ticket - Act as a liaison between Service Desk and other teams to ensure effective communication between teams - To provide liaison and governance at both internal & client levels - Undertake a weekly review of the First Line Service Desk call queues to ensure no unauthorized changes & mitigation of escalations - Measure and report on service delivery performance metrics including customer satisfaction surveys and the incident tickets - Lead in the development of good customer service practices across the service desk - Produce statistics and management reports of the service desk to client & management - Communicate all process related changes and technical updates to the team within specific timelines to ensure adherence to service desk guidelines - Capacity planning and capability development - Conduct capacity planning exercise to provide number of agents, skill levels to meet the Account Service Desk process fulfilment - Conduct shift planning to meet the service requirements of the client as per SLAs agreed - Perform briefings to Service Desk agents on changes or deployments that may affect volumes at the Service Desk - Assist SD agents by providing first line support when workloads are high, or where additional experience is required - Develop team skills and capability in managing processes to reach the desired productivity and efficiency by conducting process training/ refresher courses, providing performance feedback and managing bottom quartile team performers. - Team Management - Resourcing - Forecast talent requirements as per the current and future business needs - Hire adequate and right resources for the team - Train direct reportees to make right recruitment and selection decisions - Talent Management - Ensure 100% compliance to Wipro's standards of adequate onboarding and training for team members to enhance capability &effectiveness - Build an internal talent pool of HiPos and ensure their career progression within the organization - Promote diversity in leadership positions - Performance Management - Set goals for direct reportees, conduct timely performance reviews and appraisals, and give constructive feedback to direct reports. - In case of performance issues, take necessary action with zero tolerance for will based performance issues - Ensure that organizational programs like Performance Nxt are well understood and that the team is taking the opportunities presented by such programs to their and their levels below - Employee Satisfaction and Engagement - Lead and drive engagement initiatives for the team - Track team satisfaction scores and identify initiatives to build engagement within the team - Proactively challenge the team with larger and enriching projects/initiatives for the organization or team - Exercise employee recognition and appreciation Mandatory Skills: TIS Service Desk. Experience: 3-5 Years.

Role Purpose The purpose of this role is to the first point of contact for the B2B users who call Wipro Service Desk to troubleshoot appropriate end user issues in line with Wipros Service Desk objectives Do 1. Be responsible for primary user support and customer service a. Respond to queries from all calls, portal, emails, chats from the client b. Become familiar with each client and their respective applications/ processes c. Learn fundamental operations of commonly-used software, hardware and other equipment d. Follow standard service desk operating procedures by accurately logging all service desk tickets using the defined tracking software e. Ensure that the scorecard is maintained as per SoW with respect to TAT, SLA & hits f. Manage all queries or escalate if not resolve as per the defined helpdesk policies and framework 2. Regular MIS & resolution log management on queries raised a. Record events and problems and their resolution in logs b. Follow-up and update customer status and information c. Pass on any feedback, suggestions, escalations by customers to the appropriate internal team d. Identify and suggest improvements on processes, procedures etc Deliver No Performance Parameter Measure 1 Service Desk Delivery Adherence to TAT, SLA as per SoW Minimal Escalation Customer Experience 2 Personal Attendance Documentation etc Mandatory Skills: TIS Service Desk.

Role Purpose The purpose of this role is to the first point of contact for the B2B users who call Wipro Service Desk to troubleshoot appropriate end user issues in line with Wipros Service Desk objectives Do 1. Be responsible for primary user support and customer service a. Respond to queries from all calls, portal, emails, chats from the client b. Become familiar with each client and their respective applications/ processes c. Learn fundamental operations of commonly-used software, hardware and other equipment d. Follow standard service desk operating procedures by accurately logging all service desk tickets using the defined tracking software e. Ensure that the scorecard is maintained as per SoW with respect to TAT, SLA & hits f. Manage all queries or escalate if not resolve as per the defined helpdesk policies and framework 2. Regular MIS & resolution log management on queries raised a. Record events and problems and their resolution in logs b. Follow-up and update customer status and information c. Pass on any feedback, suggestions, escalations by customers to the appropriate internal team d. Identify and suggest improvements on processes, procedures etc Deliver No Performance Parameter Measure 1 Service Desk Delivery Adherence to TAT, SLA as per SoW Minimal Escalation Customer Experience 2 Personal Attendance Documentation etc Mandatory Skills: TIS Service Desk.

OPERATIONAL TITLE (ENGLISH): Senior information Security Analyst - Security Policy and Architecture REPORTING LOCATION: Bangalore, IN WORKING LOCATION: Bangalore, IN SUMMARY OF POSITION AND OBJECTIVES: The Information Security Consultant/Architect plays a pivotal role in safeguarding the technological infrastructure and assets of Eurofins through meticulous evaluation, integration, and enhancement of security measures, evaluation of intricate IT technologies to ensure alignment with stringent security standards before their approval by the Technology Council, and contribution to the formulation and refinement of security policies, ensuring their relevance and effectiveness in the dynamic landscape of cybersecurity. POSITION & OBJECTIVES : GSC Security Policy and Architecture Advisory is part of GSC Security Support Office pilar, combining the Security Policy and Architecture Advisory, Regional Security Support and Security Certifications Support crews. As part of his significant role in safeguarding the IT infrastructure and assets, Information Security Consultant: evaluates complex IT technologies from security standpoint before they are approved by the Technology Council; contributes to newly created and updated security policies; provides consultancy to other IT and business crews regarding the policies and security recommendations; contributes to technical integration scenarios, ensuring security in ongoing and planned projects; engages into strategic initiatives aimed at enhancing Eurofins overall security posture, ensuring resilience against evolving threats and vulnerabilities (Information Security Architect); provides internal consultancies for other crew members (Information Security Architect); QUALIFICATIONS AND EXPERIENCE REQUIRED: Experience: 7-10+ years of experience in information security, preferably in the security architecture area; experience in one or more areas such as: managing complex IT environment utilizing directory services; designing/managing/protecting complex network environments; design and/or management of cloud-based services; identifying the requirements, architecting, deploying, and managing security tools , such as vulnerability management, identity management, PKI, log management, MFA, penetration tests, automate code analysis, antimalware solutions; acting as security SME (Key Word) in IT projects; delivering security policies, standards and guidelines.

POSITION NAME: Information Security Consultant/Information Security Architect (Security Policy and Architecture Advisory) OPERATIONAL TITLE (ENGLISH): Information Security Consultant/Information Security Architect (Security Policy and Architecture Advisory) REPORTING TO : Manager REPORTING LOCATION: Bangalore, IN SUMMARY OF POSITION AND OBJECTIVES: The Information Security Consultant/Architect plays a pivotal role in safeguarding the technological infrastructure and assets of Eurofins through meticulous evaluation, integration, and enhancement of security measures, evaluation of intricate IT technologies to ensure alignment with stringent security standards before their approval by the Technology Council, and contribution to the formulation and refinement of security policies, ensuring their relevance and effectiveness in the dynamic landscape of cybersecurity. POSITION & OBJECTIVES : GSC Security Policy and Architecture Advisory is part of GSC Security Support Office pilar, combining the Security Policy and Architecture Advisory, Regional Security Support and Security Certifications Support crews. As part of his significant role in safeguarding the IT infrastructure and assets, Information Security Consultant: evaluates complex IT technologies from security standpoint before they are approved by the Technology Council; contributes to newly created and updated security policies; provides consultancy to other IT and business crews regarding the policies and security recommendations; contributes to technical integration scenarios, ensuring security in ongoing and planned projects; engages into strategic initiatives aimed at enhancing Eurofins overall security posture, ensuring resilience against evolving threats and vulnerabilities (Information Security Architect); provides internal consultancies for other crew members (Information Security Architect); QUALIFICATIONS AND EXPERIENCE REQUIRED: Experience: 7-10+ years of experience in information security, preferably in the security architecture area; experience in one or more areas such as: managing complex IT environment utilizing directory services; designing/managing/protecting complex network environments; design and/or management of cloud-based services; identifying the requirements, architecting, deploying, and managing security tools , such as vulnerability management, identity management, PKI, log management, MFA, penetration tests, automate code analysis, antimalware solutions; acting as security SME (Key Word) in IT projects; delivering security policies, standards and guidelines. Education: Bachelors degree in computer science, security and similar is appreciated. Knowledge, Skills and Abilities: As we are working in an international environment, Information Security Consultants English needs to be excellent. He/She needs to be an effective communicator (both to technical and non-technical professionals), convincing that his/her concepts are relevant and important for the whole organization. Role requires also skills such as orientation on details, team working, problem solving and independence. Additionally, following trainings or certificates are appreciated: CISPP (*Added Advantage) CCSP (*Added Advantage) CEH AZ-500, AZ-xxx, SC-xxx AWS Security CompTIA Security+ Others, related to security, public cloud, networking, IT infra

About Us Capco, a Wipro company, is a global technology and management consulting firm. Awarded with Consultancy of the year in the British Bank Award and has been ranked Top 100 Best Companies for Women in India 2022 by Avtar & Seramount . With our presence across 32 cities across globe, we support 100+ clients across banking, financial and Energy sectors. We are recognized for our deep transformation execution and delivery. WHY JOIN CAPCO You will work on engaging projects with the largest international and local banks, insurance companies, payment service providers and other key players in the industry. The projects that will transform the financial services industry. MAKE AN IMPACT Innovative thinking, delivery excellence and thought leadership to help our clients transform their business. Together with our clients and industry partners, we deliver disruptive work that is changing energy and financial services. #BEYOURSELFATWORK Capco has a tolerant, open culture that values diversity, inclusivity, and creativity. CAREER ADVANCEMENT With no forced hierarchy at Capco, everyone has the opportunity to grow as we grow, taking their career into their own hands. DIVERSITY & INCLUSION We believe that diversity of people and perspective gives us a competitive advantage. Location- Bangalore/Pune Work Mode - Hybrid (3 Days) Experience - 6+ Years Experienced in Project/Program PMO Experienced in handling stakeholders in different geos Experienced in working with Global customers Experienced in Project/Program Financials/budgeting and tracking Experienced in RAID log management Experienced in setting up steerco meetings and chairing it Experienced in working on executive reports/steerco deck/etc Experienced in working for financial services customers/projects Have thorough understanding on Project SDLC/governance Good communication skills Willing to work in UK shift timing WHY JOIN CAPCO You will work on engaging projects with some of the largest banks in the world, on projects that will transform the financial services industry. We offer A work culture focused on innovation and creating lasting value for our clients and employees Ongoing learning opportunities to help you acquire new skills or deepen existing expertise A flat, non-hierarchical structure that will enable you to work with senior partners and directly with clients A diverse, inclusive, meritocratic culture We offer: A work culture focused on innovation and creating lasting value for our clients and employees Ongoing learning opportunities to help you acquire new skills or deepen existing expertise A flat, non-hierarchical structure that will enable you to work with senior partners and directly with clients

OPERATIONAL TITLE (ENGLISH)Senior Consultant - Security Policy and Architecture REPORTING LOCATION Bangalore, IN WORKING LOCATIONBangalore, IN SUMMARY OF POSITION AND OBJECTIVES The Information Security Consultant/Architect plays a pivotal role in safeguarding the technological infrastructure andassets of Eurofins through meticulous evaluation, integration, and enhancement of security measures, evaluation of intricate IT technologies to ensure alignment with stringent security standards before their approval by the Technology Council, and contribution to the formulation and refinement of security policies, ensuring their relevance and effectiveness in the dynamic landscape of cybersecurity. POSITION & OBJECTIVES : GSC Security Policy and Architecture Advisory is part of GSC Security Support Office pilar, combining the Security Policy and Architecture Advisory, Regional Security Support and Security Certifications Support crews. As part of his significant role in safeguarding the IT infrastructure and assets, Information Security Consultant: evaluates complex IT technologies from security standpoint before they are approved by the Technology Council; contributes to newly created and updated security policies; provides consultancy to other IT and business crews regarding the policies and security recommendations; contributes to technical integration scenarios, ensuring security in ongoing and planned projects; engages into strategic initiatives aimed at enhancing Eurofins overall security posture, ensuring resilience against evolving threats and vulnerabilities (Information Security Architect); provides internal consultancies for other crew members (Information Security Architect); QUALIFICATIONS AND EXPERIENCE REQUIRED: Experience: 7-10+ years of experience in information security, preferably in the security architecture area; experience in one or more areas such as: managing complex IT environment utilizing directory services; designing/managing/protecting complex network environments; design and/or management of cloud-based services; identifying the requirements, architecting, deploying, and managing security tools , such as vulnerability management, identity management, PKI, log management, MFA, penetration tests, automate code analysis, antimalware solutions; acting as security SME (Key Word) in IT projects; delivering security policies, standards and guidelines. As we are working in an international environment, Information Security Consultants English needs to be excellent. He/She needs to be an effective communicator (both to technical and non-technical professionals), convincing that his/her concepts are relevant and important for the whole organization. Role requires also skills such as orientation on details, team working, problem solving and independence. Additionally, following trainings or certificates are appreciated: CISPP (*Added Advantage) CCSP (*Added Advantage) CEH AZ-500, AZ-xxx, SC-xxx AWS Security CompTIA Security+ Others, related to security, public cloud, networking, IT infra Qualifications Bachelors degree in computer science, security and similar is appreciated. Knowledge, Skills and Abilities:

Security Specialist Location: Hyderabad Position: 1 Experience: 4 to 8 years pre sales discussions and design security architecture based on customer requirement. Implement firewalls, anti-virus software, log management, authentication systems, content filtering, Professional IT certifications will be added advantage

KEY Capabilities Experience in working with Splunk Enterprise, Splunk Enterprise Security & Splunk UEBA Minimum of Splunk Power User Certification Good knowledge in programming or Scripting languages such as Python (preferred), JavaScript (preferred), Bash, PowerShell, Bash, etc. Perform remote and on-site gap assessment of the SIEM solution. Define evaluation criteria & approach based on the Client requirement & scope factoring industry best practices & regulations Conduct interview with stakeholders, review documents (SOPs, Architecture diagrams etc.) Evaluate SIEM based on the defined criteria and prepare audit reports Good experience in providing consulting to customers during the testing, evaluation, pilot, production and training phases to ensure a successful deployment. Understand customer requirements and recommend best practices for SIEM solutions. Offer consultative advice in security principles and best practices related to SIEM operations Design and document a SIEM solution to meet the customer needs Experience in onboarding data into Splunk from various sources including unsupported (in-house built) by creating custom parsers Verification of data of log sources in the SIEM, following the Common Information Model (CIM) Experience in parsing and masking of data prior to ingestion in SIEM Provide support for the data collection, processing, analysis and operational reporting systems including planning, installation, configuration, testing, troubleshooting and problem resolution Assist clients to fully optimize the SIEM system capabilities as well as the audit and logging features of the event log sources Assist client with technical guidance to configure end log sources (in-scope) to be integrated to the SIEM Experience in handling big data integration via Splunk Expertise in SIEM content development which includes developing process for automated security event monitoring and alerting along with corresponding event response plans for systems Hands-on experience in development and customization of Splunk Apps & Add-Ons Builds advanced visualizations (Interactive Drilldown, Glass tables etc.) Build and integrate contextual data into notable events Experience in creating use cases under Cyber kill chain and MITRE attack framework Capability in developing advanced dashboards (with CSS, JavaScript, HTML, XML) and reports that can provide near real time visibility into the performance of client applications. Experience in installation, configuration and usage of premium Splunk Apps and Add-ons such as ES App, UEBA, ITSI etc Sound knowledge in configuration of Alerts and Reports. Good exposure in automatic lookup, data models and creating complex SPL queries. Create, modify and tune the SIEM rules to adjust the specifications of alerts and incidents to meet client requirement Work with the client SPOC to for correlation rule tuning (as per use case management life cycle), incident classification and prioritization recommendations Experience in creating custom commands, custom alert action, adaptive response actions etc. Qualification & experience Minimum of 3 to 6 years experience with a depth of network architecture knowledge that will translate over to deploying and integrating a complicated security intelligence solution into global enterprise environments. Strong oral, written and listening skills are an essential component to effective consulting. Strong background in network administration. Ability to work at all layers of the OSI models, including being able to explain communication at any level is necessary. Must have knowledge of Vulnerability Management, Windows and Linux basics including installations, Windows Domains, trusts, GPOs, server roles, Windows security policies, user administration, Linux security and troubleshooting. Good to have below mentioned experience with designing and implementation of Splunk with a focus on IT Operations, Application Analytics, User Experience, Application Performance and Security Management Multiple cluster deployments & management experience as per Vendor guidelines and industry best practices Troubleshoot Splunk platform and application issues, escalate the issue and work with Splunk support to resolve issues Certification in any one of the SIEM Solution such as IBM QRadar, Exabeam, Securonix will be an added advantage Certifications in a core security related discipline will be an added advantage.

About Gruve Gruve is an innovative software services startup dedicated to transforming enterprises to AI powerhouses. We specialize in cybersecurity, customer experience, cloud infrastructure, and advanced technologies such as Large Language Models (LLMs). Our mission is to assist our customers in their business strategies utilizing their data to make more intelligent decisions. As a well-funded early-stage startup, Gruve offers a dynamic environment with strong customer and partner networks. About the Role We are seeking a skilled SIEM Administrator to manage and optimize different SIEM solutions. The ideal candidate will be responsible for system administration, log integration, troubleshooting, Deployment, Implementation and maintaining security posture for the organization. Key Responsibilities SIEM Administration: Install, configure, maintain, and upgrade SIEM components. (IBM Qradar SIEM, DNIF, Splunk & Securonix). Log Management: Onboard, parse, and normalize logs from various data sources (firewalls, servers, databases, applications, etc.) Custom log source integration and parser development. System Monitoring & Troubleshooting: Ensure SIEM tools are functioning optimally. Monitor & regular health check perform for SIEM tools. troubleshoot system errors and resolve performance issues. Conduct regular performance tuning and capacity planning Perform root cause analysis for system failures & performance issues. Optimize system performance and storage management for SIEM Integration & Automation : Integrate third-party security tools (firewalls, EDR, threat intelligence feeds) with SIEM. Compliance & Audits: Ensure log retention policies comply with regulatory standards. Develop & enforce SIEM access controls & user roles/permissions. Documentation & Training: Document system configurations, SOP s & troubleshooting documents. Prepare monthly/ weekly reports and PPT, onboarding documentation as per business/ client requirement. Dashboard & Report Development: Create & maintain custom dashboards & reports Optimize searches & reports for performance and efficiency. Other Knowledge Base: Hands on experience with Linux OS & Windows OS Basic to mediator level knowledge in networking skills Should be familiar with Azure, AWS or GCP products Required Skills & Qualifications: B.E/B.Tech degree in computer science, Cybersecurity, or related field (preferred). 1-3 years experience as Soc Admin Strong knowledge of SIEM architecture, log sources, and event correlation. Proficiency in log management, regular expressions, and network security concepts. Experience integrating SIEM with various security tools (firewalls, IDS/IPS, antivirus, etc.). Scripting knowledge (Python, Bash, or PowerShell) is a plus. Training or Certificate on Splunk or IBM Qradar Preferred. Soft Skills: Strong analytical and problem-solving skills. Excellent communication and documentation abilities. Ability to work independently and in a team. Must Have Skills: Hands-on experience with SIEM tools like IBM QRadar, Splunk, Securonix, LogRhythm, Microsoft Sentinel, DNIF etc. Proficiency in IBM Qradar & Splunk administration Configuring, maintaining, and troubleshooting SIEM solutions. Log source integration, parsing, and normalization. Strong knowledge of TCP/IP, DNS, HTTP, SMTP, FTP, VPNs, proxies, and firewall rules. Familiarity with Linux and Windows system administration. Why Gruve At Gruve, we foster a culture of innovation, collaboration, and continuous learning. We are committed to building a diverse and inclusive workplace where everyone can thrive and contribute their best work. If you re passionate about technology and eager to make an impact, we d love to hear from you. Gruve is an equal opportunity employer. We welcome applicants from all backgrounds and thank all who apply; however, only those selected for an interview will be contacted.

Key Responsibilities: WebLogic Server Administration: Installation, configuration, tuning, and troubleshooting of Oracle WebLogic Server. Deploy and manage Java-based applications on WebLogic. Perform regular health checks, patching, and upgrades for WebLogic environments. Application Support: Collaborate with development and operations teams to deploy and manage banking applications. Ensure application uptime and minimize downtime through proactive monitoring and alerting. Troubleshoot and resolve WebLogic-related issues in production and non-production environments. Performance Tuning and Optimization: Monitor and analyze the performance of WebLogic and Java applications. Implement and configure performance-enhancing measures such as load balancing, clustering, and JVM tuning. Security and Compliance: Implement and enforce security policies for WebLogic Server, including user authentication, authorization, SSL configurations, and encryption standards. Ensure compliance with internal and regulatory requirements within the banking domain. Disaster Recovery and High Availability: Configure and maintain WebLogic clusters for high availability and failover. Implement disaster recovery plans for WebLogic environments and perform regular DR drills. Log Management and Troubleshooting: Analyze logs for system behavior, performance bottlenecks, and errors. Work with application developers and DBAs to resolve complex issues affecting WebLogic and applications. Collaboration and Documentation: Collaborate with cross-functional teams (DevOps, security, network) to optimize the entire application stack. Create and maintain technical documentation, including standard operating procedures, configuration guides, and troubleshooting steps. Upgrades and Patches: Plan, test, and execute WebLogic server upgrades and patches. Keep abreast of WebLogic and Java updates, applying them as necessary in a controlled and tested manner. Skills & Qualifications: Education: Engineering degree in Computer Science, Information Technology, or a related field is mandatory Experience: Minimum of 5 years of hands-on experience administering Oracle WebLogic Server in large, production environments, preferably within the banking or financial services industry. Strong experience in deploying, monitoring, and troubleshooting Java-based banking applications. Technical Skills: Proficient with Oracle WebLogic Server (10.x, 11g, 12c). Familiarity with Java, Java EE, JMS, and JDBC. Experience with clustering, load balancing, and WebLogic Domain and Server configurations. Expertise in shell scripting, automation tools, and monitoring tools (e.g., Nagios, AppDynamics, Splunk). Experience with databases (Oracle, SQL Server, etc.) and web servers (Apache, IIS). Familiarity with containerization and cloud platforms (AWS, Azure) is a plus. Soft Skills: Excellent troubleshooting, problem-solving, and analytical skills. Strong communication skills and ability to work collaboratively across teams. Ability to manage multiple tasks in a fast-paced, dynamic environment. Familiarity with ITIL and incident management processes. Desirable Skills: Experience with banking applications such as core banking systems, payment processing systems, or financial transaction platforms. Knowledge of enterprise-grade monitoring tools (e.g., Oracle Enterprise Manager). Experience in DevOps practices and CI/CD pipelines. Familiarity with regulatory standards and compliance requirements in the banking domain (e.g., PCI DSS, SOX). Working Environment: The position may require on-call support and occasional after-hours maintenance. Work within a team-oriented environment with collaboration across IT infrastructure, development, and security teams.

About the Role We are seeking a skilled SIEM Administrator to manage and optimize different SIEM solutions. The ideal candidate will be responsible for system administration, log integration, troubleshooting, Deployment, Implementation and maintaining security posture for the organization. Key Responsibilities SIEM Administration: Install, configure, maintain, and upgrade SIEM components. (IBM Qradar SIEM, DNIF, Splunk & Securonix). Log Management: Onboard, parse, and normalize logs from various data sources (firewalls, servers, databases, applications, etc.) Custom log source integration and parser development. System Monitoring & Troubleshooting: Ensure SIEM tools are functioning optimally. Monitor & regular health check perform for SIEM tools. troubleshoot system errors and resolve performance issues. Conduct regular performance tuning and capacity planning Perform root cause analysis for system failures & performance issues. Optimize system performance and storage management for SIEM Integration & Automation : Integrate third-party security tools (firewalls, EDR, threat intelligence feeds) with SIEM. Compliance & Audits: Ensure log retention policies comply with regulatory standards. Develop & enforce SIEM access controls & user roles/permissions. Documentation & Training: Document system configurations, SOP’s & troubleshooting documents. Prepare monthly/ weekly reports and PPT, onboarding documentation as per business/ client requirement. Dashboard & Report Development: Create & maintain custom dashboards & reports Optimize searches & reports for performance and efficiency. Other Knowledge Base: Hands on experience with Linux OS & Windows OS Basic to mediator level knowledge in networking skills Should be familiar with Azure, AWS or GCP products Required Skills & Qualifications: B.E/B.Tech degree in computer science, Cybersecurity, or related field (preferred). 1-3 years experience as Soc Admin Strong knowledge of SIEM architecture, log sources, and event correlation. Proficiency in log management, regular expressions, and network security concepts. Experience integrating SIEM with various security tools (firewalls, IDS/IPS, antivirus, etc.). Scripting knowledge (Python, Bash, or PowerShell) is a plus. Training or Certificate on Splunk or IBM Qradar Preferred. Soft Skills: Strong analytical and problem-solving skills. Excellent communication and documentation abilities. Ability to work independently and in a team. Must Have Skills: Hands-on experience with SIEM tools like IBM QRadar, Splunk, Securonix, LogRhythm, Microsoft Sentinel, DNIF etc. Proficiency in IBM Qradar & Splunk administration Configuring, maintaining, and troubleshooting SIEM solutions. Log source integration, parsing, and normalization. Strong knowledge of TCP/IP, DNS, HTTP, SMTP, FTP, VPNs, proxies, and firewall rules. Familiarity with Linux and Windows system administration.

Role Overview We are looking for experienced DevOps Engineers (4+ years) with a strong background in cloud infrastructure, automation, and CI/CD processes. The ideal candidate will have hands-on experience in building, deploying, and maintaining cloud solutions using Infrastructure-as-Code (IaC) best practices. The role requires expertise in containerization, cloud security, networking, and monitoring tools to optimize and scale enterprise-level applications. Key Responsibilities Design, implement, and manage cloud infrastructure solutions on AWS, Azure, or GCP . Develop and maintain Infrastructure-as-Code (IaC) using Terraform, CloudFormation, or similar tools. Implement and manage CI/CD pipelines using tools like GitHub Actions, Jenkins, GitLab CI/CD, BitBucket Pipelines, or AWS CodePipeline . Manage and orchestrate containers using Kubernetes, OpenShift, AWS EKS, AWS ECS, and Docker . Work on cloud migrations , helping organizations transition from on-premises data centers to cloud-based infrastructure. Ensure system security and compliance with industry standards such as SOC 2, PCI, HIPAA, GDPR, and HITRUST . Set up and optimize monitoring, logging, and alerting using tools like Datadog, Dynatrace, AWS CloudWatch, Prometheus, ELK, or Splunk . Automate deployment, configuration, and management of cloud-native applications using Ansible, Chef, Puppet, or similar configuration management tools . Troubleshoot complex networking, Linux/Windows server issues , and cloud-related performance bottlenecks. Collaborate with development, security, and operations teams to streamline the DevSecOps process. Must-Have Skills 3 + years of experience in DevOps, cloud infrastructure, or platform engineering. Expertise in at least one major cloud provider : AWS, Azure, or GCP . Strong experience with Kubernetes, ECS, OpenShift , and container orchestration technologies. Hands-on experience in Infrastructure-as-Code (IaC) using Terraform, AWS CloudFormation, or similar tools . Proficiency in scripting/programming languages like Python, Bash, or PowerShell for automation. Strong knowledge of CI/CD tools such as Jenkins, GitHub Actions, GitLab CI/CD, or BitBucket Pipelines . Experience with Linux operating systems (RHEL, SUSE, Ubuntu, Amazon Linux) and Windows Server administration . Expertise in networking (VPCs, Subnets, Load Balancing, Security Groups, Firewalls) . Experience in log management and monitoring tools like Datadog, CloudWatch, Prometheus, ELK, Dynatrace . Strong communication skills to work with cross-functional teams and external customers. Knowledge of Cloud Security best practices, including IAM, WAF, GuardDuty, CVE scanning, vulnerability management . Good-to-Have Skills Knowledge of cloud-native security solutions (AWS Security Hub, Azure Security Center, Google Security Command Center). Experience in compliance frameworks (SOC 2, PCI, HIPAA, GDPR, HITRUST). Exposure to Windows Server administration alongside Linux environments. Familiarity with centralized logging solutions (Splunk, Fluentd, AWS OpenSearch). GitOps experience with tools like ArgoCD or Flux . Background in penetration testing, intrusion detection, and vulnerability scanning . Experience in cost optimization strategies for cloud infrastructure. Passion for mentoring teams and sharing DevOps best practices.

Role & responsibilities - Watching for security problems: Monitoring alerts from DLP, firewalls, and antivirus systems. Checking if problems are real: Investigating alerts to find actual threats. Getting IT to fix things: Working with the WPIT team to resolve security issues. Asking departments why: Getting explanations from departments for security-related actions. Keeping records: Documenting all alerts and actions taken. Preferred candidate profile - Basic understanding of network protocols & DLp, Logging & monitoring alerts Operating System :- Familiarity with Windows and Linux operating systems Log Analysis:Ability to analyze log files from various security devices and systems. Follow-up:Ability to track and follow up on incidents to ensure proper resolution. Excel :- Basic spreadsheet management & Data analysis and reporting. Note - Job Location - CommerZone, Yerwada, Pune Work Mode - Work from Office Work days - 5 days Domain - Payment/Card/Banking/BFSI/ Retail Payments Job Type - Full Time Notice period - Immediate or 30 days

Job Title: Kibana/ELK Specialist Hiring Locations: Chennai / Mumbai / Gurgaon Experience: 5+ years Job Description: We are seeking an experienced Sr. Observability Analyst with expertise in the ELK (Elasticsearch, Logstash, Kibana) stack. In this role, you will be responsible for maintaining and enhancing our observability and monitoring platform, ensuring optimal performance and visibility across our systems. You will work collaboratively with development, operations, and the rest of the observability team to implement robust logging, monitoring, and integration solutions that provide actionable insights into our platform's health and performance. Key Responsibilities: Manage and optimize Elasticsearch log ingestion, indexing, and querying to support near real-time observability of operational logs, health metrics, distributed tracing, and automated processes. Develop and maintain Kibana dashboards, visualizations, and reporting to provide meaningful insights to various stakeholders. Implement automated integration based on log patterns and metrics, as well as synthetic probes to proactively identify emergent issues and potentially trigger automated mitigations. Integrate with other sources of operational data including Prometheus, Azure Monitor, Log Analytics, and Application Insights. Implement machine learning (ML) anomaly and outlier detection jobs on automated baseline metrics across hundreds of client/service norms. Collaborate with cross-functional teams to define logging standards and implement observability best practices, with an emphasis on the profusion of OpenTelemetry standards throughout the observability landscape. Must-Have Skills: Deep understanding of observability principles and architectures. Proven expertise in operational observability using Kibana and the ELK stack, as well as experience with other observability tools and platforms (Prometheus, Grafana, Jaeger, OpenTelemetry, etc.). Strong understanding of log management concepts, log aggregation techniques, and log analysis best practices. Proficiency in designing custom dashboards using Kibana's visualization capabilities (e.g., charts, graphs). Familiarity with Elasticsearch APIs, including connector, ingest, transform, and machine learning. Experience with cloud platforms (particularly Azure). Proficiency in scripting and automation (e.g., Python, Bash, TypeScript). Ability to collaborate effectively with technical teams as well as non-technical stakeholders to gather requirements and translate them into actionable solutions. Good-to-Have Skills: Knowledge of additional observability tools and frameworks. Experience with data visualization and reporting tools. Familiarity with agile methodologies. Required Skills Elk Stack,Kibana,Azure Cloud,Scripting

Job Summary: We are looking for an experienced Technical Product Manager with 5+ years of expertise in log management, security, Kubernetes, cloud platforms, and compliance frameworks . The ideal candidate will have a strong background in SIEM, security protocols, cloud infrastructure, and Kubernetes orchestration , along with hands-on experience in agile methodologies and product ownership . Key Responsibilities: Log Forwarding and Aggregation: Manage and optimize log forwarding and aggregation processes across multiple systems and applications. Utilize tools like ELK Stack, Fluentd for efficient log processing. Security Information and Event Management (SIEM): Implement and oversee SIEM solutions such as Splunk, IBM QRadar, or Azure Sentinel for real-time threat detection and response. Develop strategies for log correlation, anomaly detection, and incident management . Kubernetes Management: Lead Kubernetes deployments, scaling, and automation in a production environment . Ensure high availability, security, and compliance across Kubernetes workloads. Cloud Infrastructure & Compliance: Design and optimize cloud infrastructure on AWS, Azure, or Google Cloud with a focus on scalability and security . Enforce compliance policies using tools like Kyverno . Ensure adherence to security frameworks such as ISO 27001, SOC 2 for regulatory compliance. Agile Product Management: Manage product lifecycles, including defining roadmaps, sprint planning, and backlog management . Apply Scrum and Kanban methodologies to streamline development and technical delivery. Collaborate with cross-functional teams to align business objectives with technical solutions . Required Skills & Qualifications: 5+ years of experience in Technical Product Management or Product Ownership in security and cloud environments. Strong expertise in log management, SIEM tools, Kubernetes, and cloud platforms . Hands-on experience with policy enforcement and security compliance frameworks . Proven track record in agile product management , working with cross-functional teams . Excellent communication and stakeholder management skills .