Senior Security Engineer- SIEM

Position Title- Senior Security Engineer- SIEM

• Experienced in

  configuring and optimizing Splunk

  Enterprise Security features, including Risk-Based Alerting (RBA).
• Experience in

  architecting and implementing SIEM

  solutions as well as writing

  complex correlation rules and handling log

  source integration with Splunk Cloud
• Experience on

  Linux shell scripting, python scripting, powershell

  scripting
• Ability to clearly identify, capture, articulate, design, implement, and maintain security operations use cases
• Work on complex technical problems and provide innovative solutions
• Experience with

  architecture and implementation of SOAR solutions

  . Assist with process development and process improvement/automation for Security Operations to include creation/modification of SOPs and Playbooks
• Integrate SOAR platform with other security tools and APIs to execute automated workflows
• Author, test, and maintain automation scripts/workflows within SOAR platform
• Automate Security Incident Response processes by providing the ability to analyze and resolve alerts from existing security tools

Required Skills and Qualifications:

• Expert level experience in deploying and

  managing SIEM platforms

• Experience with

  Python/Powershell

  scripting for automation and custom integrations.
• In-depth knowledge of architecture, engineering, and operations of Splunk Cloud
• Expertise in SOP/playbook creation and execution
• Deep understanding of logging mechanisms of: Windows, Linux, Mac OS, Networking technologies, Azure cloud technologies.
• Identify potential risks, threats, vulnerabilities and exploits through malware and other data analysis

Experience- 6-8 years

Location- Mumbai

Shift- 3.00pm to 12.00am

Notice- Immediate/ 15 days preferred

Professional Certifications like GSEC, GCIA, CISSP, OSCP, etc., will be a plus.