2 Siem Administrator Jobs

Looking for an experienced Splunk Architect who is into end-to-end troubleshooting with migration, installation, and upgradation experience. This individual will troubleshoot the technical issues to establish the root cause of problems and form a solution or workaround across a range of environments. Role: Technical Consultant Location: Ahmedabad Education: Bachelor's Degree Experience: 7 to 13 years Shift: Rotational including Night Shift Job Brief Responsibilities: Provide outstanding service and technical support to our customers and maintain positive customer relationships. Take ownership of resolving customer problems while ensuring an outstanding customer experience. Develop and maintain a deep understanding of the Splunk product and related technologies, with a focus on our security line of products, such as Enterprise Security. Troubleshoot technical issues to establish the root cause of problems and form a solution or workaround across a range of environments. Create, reuse, improve, and maintain quality knowledge articles as part of the case management workflow while following Knowledge-Centered Service principles and methodology. Reproduce customer issues, le bug reports, raise issues to Engineering team, and be the bridge between customers and product developers. Drive continuous improvement of tools, processes, and product supportability. Perform other job-related duties as assigned and participate in special projects. Requirements: 7+ years of experience as a Splunk Developer/Admin. Should have experience in installing Splunk core products. Prior experience with Splunk and Enterprise Security is mandatory. Experience with UNIX (Linux, NIX), LDAP, Windows, or Mac OS ( 4+ years). Certification in Splunk is mandatory. Experience in technical support, system administration, or similar technical role, with a strong preference for experience in an IT security role, such as security analyst, SIEM administrator, or other relevant position (5+ years). Understanding of networking concepts, including network security, log analysis, authentication protocols, and network troubleshooting. Knowledge of Python, Perl and shell scripting, XML, HTML, or other scripting languages. Exposure to AWS (including Amazon EC2 and S3) or Google Cloud Platform. Experience providing SaaS support, Understanding of regular expressions (Regex). Logical approach to problem solving with strong troubleshooting skills. Outstanding interpersonal skills, and excellent communication - both verbal and written. Excellent time management skills with the ability to adapt to changing priorities of customer issues. Demonstrated ability to learn new technologies quickly while remaining current with the latest industry knowledge. Passionate about working in a dynamic technical environment and supporting a product with frequent product releases and regular maintenance updates. Experience in Business Analytics is a plus.

Job Role : SentinelOne Migration Engineer /SIEM Engineer--Work From Home Experience : 5 to 11 Yrs Key Skills: SIEM Administration, SIEM Implementation, SIEM Migration, Integration Notice Period : 0 to 30 days Mode of Work : Remote( 06:00 PM to 03:00 AM IST) Should be willing to work in Second shift Company: Cyber Towers, Quadrant 3, 3rd floor, Madhapur, Hyderabad -- 500081. Job Overview: We are seeking a talented and highly motivated SentinelOne Migration SIEM Engineer to join our Dedicated Defense group. As a key member of our team, you will be responsible for deploying and maintaining SentinelOne's AI SIEM to enhance threat detection, response, and overall security posture. This is an exciting opportunity for an individual with expertise in SIEM technologies, aiming to help safeguard critical systems and data from evolving cyber threats. Responsibilities: Integration & Optimization: Integrate and optimize SentinelOne AI SIEM to improve visibility and automate threat detection workflows. Threat Detection: Utilize SentinelOnes AI-powered analytics to dashboard reports and automate critical reporting functions Automation & Playbook Development: Develop automated detection and response playbooks based on SentinelOne data feeds, streamlining incident management and reducing time to resolution. Collaboration & Knowledge Sharing: Work closely with other security and IT teams to share threat intelligence, optimize SIEM use, and contribute to security strategy development. Reporting & Documentation: Develop and maintain dashboards, reports, and documentation related to SentinelOne deployment, performance, and incident metrics. Continuous Improvement: Continuously evaluate SentinelOne's capabilities and other relevant security tools to recommend improvements and refine detection capabilities. Required Qualifications: Bachelors degree in Computer Science, Information Security, or a related field (or equivalent experience). 1+ year of experience working with SentinelOne AI SIEM Hands-on experience with other SIEM platforms (Splunk, IBM QRadar, Microsoft Sentinel, etc.) and integrating them with endpoint security tools. Strong understanding of cybersecurity principles, threat detection, and SIEM management. Proficiency in scripting and automation (Python, PowerShell, etc.). Experience with cloud security (AWS, Azure, GCP) and cloud-native SIEM solutions is a plus. Preferred Qualifications: SentinelOne certification (or equivalent industry certifications). Knowledge of compliance frameworks (e.g., NIST, ISO 27001, GDPR, etc.) and how they apply to security operations. Key Skills: Technical Skills: SentinelOne platform, SIEM tools, security automation, machine learning for cybersecurity, network security. Analytical Skills: Strong ability to analyze large datasets and correlate logs/events. Communication Skills: Excellent verbal and written communication skills for collaborating with cross-functional teams and providing clear reporting. Problem-Solving: Strong troubleshooting skills with the ability to resolve complex security issues quickly and effectively.