15 Siem Administration Jobs

Role Overview: At OpenText, AI is a core aspect of our operations, driving innovation and transforming work processes to empower digital knowledge workers. As part of our team, you will play a crucial role in shaping the future of information management by leveraging your expertise. Key Responsibilities: - Perform monitoring, identification, investigation, documentation, resolution, and reporting of security alerts by prioritizing events based on risk/exposure. - Analyze Endpoint Detection and Response (EDR), Network, Cloud, and other traffic and log data to identify potential threats or vulnerabilities. - Generate tickets and incident reports for external clients and Tier 3 analysts. - Reme...

As an Onsite Support Engineer, you will be responsible for various tasks related to the day-to-day IT operations of the Client office. Your key responsibilities will include: - Monitoring Fortinet Firewall: Analyzing security alerts, reviewing logs, updating rules, and blocking Indicators of Compromise (IOCs) to maintain network security. - Managing Endpoint Security & Antivirus/EDR/SIEM: Deploying, configuring, and monitoring EDR/Antivirus/SIEM solutions to ensure client systems are updated and secure. - Handling Network Administration: Configuring and troubleshooting switches, routers, and UTM devices, and resolving network-related issues. - Performing Linux & Windows System Administration...

Experience in SIEM Tool like ArcSight, LogRhythm SIEM, Threat Intelligence, Malware Analysis, Incident Response Responsible for the technical Administration or troubleshooting in SIEM ensuring the efficient functionality of the solution Responsible for Incident Validation, Incident Analysis, Solution Recommendation, Good knowledge on implementation, installation, integration troubleshooting and overall functionalities of Arcsight ArcSight rule base fine tuning, Ongoing log source modifications, Configuration/policy changes, General SIEM Administration, SIEM Content Development Troubleshooting of an incident within IT Security incident response teams of SOC. Apply investigation techniques to ...

As a Cloud Managed Services Engineer at Versa Networks, Inc., you will play a crucial role in providing end-to-end management and technical support for the Versa hosted platform/solution. Your primary responsibility will be to troubleshoot and resolve diverse complex networking issues reported by customers, ensuring seamless operation and customer satisfaction. You will need to possess a Bachelor's/Master's degree in IT/Computer Science or equivalent, along with 5+ years of relevant hands-on experience in the field. Advanced routing/switching skills such as CCNP or equivalent level of expertise are required, and Versa certification (SD-WAN Associate/SD-WAN Specialist) would be highly preferr...

As a Security Incident Analyst L3 at our client site in Gurugram, you will play a crucial role in incident response, threat analysis, and security operations. Your responsibilities include leading the response to high-severity incidents, conducting advanced threat analysis, administering security tools, and mentoring junior SOC analysts. This position requires a minimum of 5 years of experience in a Security Operations Center (SOC) or Incident Response role, along with expertise in SIEM administration, network security, and incident detection. A strong knowledge of security tools such as SIEM platforms (QRadar, Splunk), EDR tools (CrowdStrike, Carbon Black), and IDS/IPS is essential. Additio...

1. SIEM Administration and Engineering Oversee the installation, configuration, and maintenance of IBM Qradar. Develop and implement SIEM architecture and engineering strategies. 2. Rule & Use Case Development Design, implement, and optimize custom rules, searches and dashboards. Develop and maintain advanced use cases for threat detection and incident response 3 . Incident Response and Forensics Lead the investigation of complex security incidents escalated by L1 & L2 analyst. Perform deep-dive analysis of security events and conduct forensic investigations 4. Performance and Optimization Monitor and manage the performance QRadar environment. Conduct regular health checks and audits to ensu...

We are seeking an experienced SOC Analyst to join our Security Operations team. This role demands an individual with a strong technical background in incident analysis, SIEM administration, and rule fine-tuning. The ideal candidate will have experience working with diverse environments, including Windows, Linux, and network security, and will be well-versed in ELK stack management and troubleshooting beats agents. Key Responsibilities 1. Incident Detection and Analysis: Conduct deep-dive analysis on security incidents, assessing root causes, and recommending solutions. Proactively monitor and respond to security alerts, managing incident escalation and resolution processes. Prepare detailed ...

Key Responsibilities 1. Incident Detection and Analysis: Conduct deep-dive analysis on security incidents, assessing root causes, and recommending solutions. Proactively monitor and respond to security alerts, managing incident escalation and resolution processes. Prepare detailed reports and document incidents to support future analysis and security measures. 2. SIEM Administration and Rule Fine-Tuning: Oversee SIEM configurations, including tuning rules to optimize alerting and reduce false positives. Conduct SIEM platform upgrades, troubleshoot performance issues, and ensure platform availability. Collaborate with IT teams to integrate new data sources into SIEM and enhance visibility. 3....

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology. Your role and responsibilities The SIEM Administrator will be responsible for administering the deployed SIEM service. The candidate is also expected to have hands on experience of deploying a SIEM solution from scratch, where the candidate should have the skills and knowledge to gather all the required information to build the SIEM so...

Your role and responsibilities We are seeking a highly skilled SIEM Security Engineer to join our cybersecurity team. This role involves the administration, engineering, and optimization of Security Information and Event Management (SIEM) solutions, specifically focusing on QRadar SIEM, as well as developing and implementing security use cases based on frameworks like MITRE ATT&CK and NIST. Key Responsibilities: SIEM Administration & Engineering: Maintain, configure, and optimize SIEM platforms, ensuring high availability and efficiency. Use Case Development: Design, implement, and test correlation rules and threat detection methodologies based on industry best practices. Log Source Manageme...

Roles And Responsibilities: - Experiences with Cloud security defensive techniques and threat modelling. Experiences with designing, implementing secure cloud architectures, incident response and investigation of security breaches. Develop detection rules to support our SOCalerting and response capabilities. Maintain threat intelligence databases in cloud platforms. Provide expert analytic investigative support to analysts for complex security incidents. Implement and execute administrative, management, and lifecycle procedures for the SIEM. Lead network security design for cloud solutions, including automation to support cloud expansion and network segmentation strategy. Review security con...

Required Skills Technology | Sentinel SIEM Tool Administrator | Level 2 Support Technology | Securonix SIEM Tools Administrator | Level 2 Support Education Qualification : B.Sc Certification Mandatory / Desirable : Technology | Microsoft Certified: Security, Compliance, and Identity Fundamentals / CISSP/CISM/CEH/GIAC Certified Incident Handler/Certified SOC Analyst (CSA)/CompTIA Cybersecurity Analyst (CySA+)/Cisco Certified CyberOps Associate Delivery Skills required are: - Technical Skills: - *Identifying and analyzing potential threats and vulnerabilities using various tools and techniques. *Leading and managing the response to security incidents, including containment, eradication, and re...

Key Responsibilities: • Architecting & Designing Next-Gen SIEM/EDR. • Perform as the subject matter expert on any of the above solutions for the customer, use the capabilities of the solution in the daily operational work for the end customer. • Advise customers on best practices and use cases on how to use this solution to achieve customer end state requirements. • Content development (Use case development) which includes developing process for automated security event monitoring and alerting along with corresponding event response plans for systems • Work with the wider Delivery teams and customer to create SOC playbooks covering the SIEM and SOC setup • Create and configure SOAR workflows...

Introduction At IBM, work is more than a job - its a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things youve never thought possible. Are you ready to lead in this new era of technology and solve some of the worlds most challenging problems If so, lets talk. Your role and responsibilities We are seeking a highly skilled SIEM Security Engineer to join our cybersecurity team. This role involves the administration, engineering, and optimization of Security Information and Event Management (SIEM) solutions, specifically focusing on QRadar SIEM, as well as devel...

Position Summary We are seeking an experienced SOC Analyst to join our Security Operations team. This role demands an individual with a strong technical background in incident analysis, SIEM administration, and rule fine-tuning. The ideal candidate will have experience working with diverse environments, including Windows, Linux, and network security, and will be well-versed in ELK stack management and troubleshooting beats agents. Key Responsibilities 1. Incident Detection and Analysis: o Conduct deep-dive analysis on security incidents, assessing root causes, and recommending solutions. o Proactively monitor and respond to security alerts, managing incident escalation and resolution process...