5.0 - 8.0 years

13 - 22 Lacs

hyderabad

Work from Office

Job Title: Splunk SIEM Specialist Position Overview We are seeking an experienced Splunk SIEM Specialist to design, implement, and manage enterprise-level SIEM solutions. The role involves end-to-end Splunk administration, log source onboarding, detection content development, and platform optimization to enhance our organizations security monitoring and incident detection capabilities. The ideal candidate will bring strong expertise in Splunk Enterprise Security along with a solid understanding of security operations and log management. Key Responsibilities Lead and execute SIEM migrations and implementations , including planning, deployment, and validation. Onboard and normalize diverse log sources into Splunk, ensuring CIM (Common Information Model) compliance. Develop and optimize detection content such as correlation rules, dashboards, alerts, and reports. Troubleshoot and resolve issues related to log ingestion, parsing, and Splunk platform performance . Perform regular platform administration and optimization including indexing, storage, and search tuning. Manage Splunk components ( indexers, search heads, forwarders ) and oversee upgrades and patches. Deploy and configure Splunk SIEM solutions across on-premises and cloud environments . Conduct gap analysis of log sources and use cases; develop new use cases aligned with emerging threats. Collaborate with stakeholders and security teams to deliver actionable monitoring and threat detection solutions. Required Skills & Qualifications Minimum 3 years of hands-on experience with Splunk SIEM (Enterprise Security preferred). Strong understanding of SIEM concepts, log management, and SOC operations . Proven experience in log source onboarding, parsing, and CIM compliance . Expertise in detection content creation (correlation rules, dashboards, alerts) and tuning. Solid troubleshooting skills for both Splunk platform and security content . Experience in Splunk deployment, administration, and health monitoring . Ability to conduct gap analysis and provide actionable recommendations. Strong communication and documentation skills. Relevant certifications (e.g., Splunk Certified Admin, Splunk Enterprise Admin, Splunk Certified Architect ) are an advantage. Preferred Experience Strong knowledge of security fundamentals and threat detection . Hands-on experience with cloud SIEM deployments (AWS, Azure, GCP). Familiarity with scripting languages (Python, Bash) for automation. Exposure to other SIEM platforms ( QRadar, Sentinel, XSIAM, SecOps ) is beneficial.

Posted 4 days ago

Apply

SIEM Engineer Specialist Careernet

8.0 - 11.0 years

35 - 37 Lacs

Bengaluru

Hybrid

Key Skills: SIEM, SOAR, Azure Sentinel, FortiSOAR, Python, PowerShell, Cyber Security, Automation, Security Frameworks, Compliance, Incident Response, Playbook Creation, Log Onboarding, Cyber Kill Chain. Roles & Responsibilities: Manage and oversee SIEM and SOAR solutions, including log onboarding and creation of automated playbooks. Provide hands-on technical expertise across Cyber Security and technology domains. Collaborate with internal teams to integrate and optimize security monitoring tools and automate workflows. Maintain and ensure the performance of SIEM and SOAR platforms, enhancing detection and response capabilities. Design and implement automation solutions using scripting languages (e.g., Python, PowerShell). Support and ensure compliance with security frameworks and industry regulations. Analyze and remediate security incidents, leveraging expertise in the Cyber Kill Chain and common attack methods. Work closely with cross-functional teams to define security requirements, processes, and practices. Communicate complex security concepts to non-technical stakeholders. Monitor and report on security events and incidents to ensure continuous improvement of security posture. Experience Required: 8-11 years of experience in IT Security, with at least 6 years managing SIEM and SOAR solutions. Strong hands-on experience with SIEM (e.g., Azure Sentinel) and SOAR platforms (e.g., FortiSOAR). Experience in log onboarding for SIEM solutions and creating automated playbooks on SOAR platforms. Solid understanding of security frameworks, compliance regulations, and industry standards. Technical experience in Cyber Security and technology domains, including threat analysis and remediation. Proven ability to work under pressure and manage time effectively. Familiarity with e-commerce, logistics, supply chain, and port operations applications is a plus. Education: A ny Graduation.

Posted 1 month ago

Apply

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.