12 Siem Integration Jobs

Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way you'd like, supported and inspired by a collaborative community of colleagues around the world, and able to reimagine what's possible. Join us and help the world's leading organizations unlock the value of technology and build a more sustainable, more inclusive world. Your Role Design, implement, and administer Cribl Stream, Edge, and Search environments for enterprise-scale observability. Deploy, configure, maintain, and optimize Cribl solutions for data streaming, log routing, and telemetry processing. Design and manage data pipelines for logs, metrics, and observability data across distributed systems. Configure parsers, reducers, enrichments, filters, and routing rules for efficient log processing. Integrate Cribl with monitoring and SIEM platforms such as Splunk, Elastic, and Datadog. Your Profile 4 to 12 years of experience in observability and log management using Cribl solutions. Expertise in deploying, configuring, and managing Cribl Stream, Edge, and Search. Proficiency in Python, Bash, and familiarity with automation tools and DevOps pipelines. Strong understanding of observability architecture, log processing, and telemetry data flows. Experience integrating Cribl with SIEM and monitoring tools like Splunk, Elastic, and Datadog. What You Will Love Working At Capgemini Work on cutting-edge observability solutions supporting mission-critical systems. Expand your expertise in Cribl, Python, API scripting, and log pipeline engineering. Clear career progression paths from platform administration to architecture and consulting roles. Be part of high-impact projects that drive performance, visibility, and operational excellence for global clients. Thrive in a diverse, inclusive, and respectful environment that values your voice and ideas. Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market-leading capabilities in AI, generative AI, cloud and data, combined with its deep industry expertise and partner ecosystem.,

Job Description Technical Skills Firewall Configuration & Management (Cisco ASA, Palo Alto, Fortinet, Checkpoint) Intrusion Detection & Prevention Systems (IDPS) Access Control Lists (ACLs) VPN Setup & Management SIEM Integration (Splunk, QRadar, etc.) Network Segmentation & Monitoring Log Analysis & Threat Detection Security Auditing & Compliance (ISO 27001, NIST) Vulnerability Assessment & Penetration Testing Cloud Firewall Security (AWS, Azure) Soft Skills Problem-solving & analytical thinking Collaboration with cross-functional teams Incident response & crisis management Documentation & reporting Grey route testing, new brands identification, market intelligence analysis Process creation, streamlining it along with documentation

NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now. We are currently seeking a Systems Engineering Advisor to join our team in Noida, Uttar Pradesh (IN-UP), India (IN). Remote Systems Engineering Advisor- Active Directory/Azure AD Role Overview The NTT DATA Services Security organization is looking for talented security-oriented Systems Engineering Advisor with strong Active Directory/Azure AD/Identity skills. This role will be part of a larger dedicated security team dedicated to supporting, troubleshooting, upgrading Active Directory, Azure AD and related Identity technologies. Role Responsibilities: Active Directory designing, Architecture Solutions, Integration with platforms & Applications Develop an architecture of directory solutions for Windows, Unix, and related platforms Experience in consolidations of multiple forest and domains and demonstrated understanding on User accounts, machine accounts, GPOs Understand the requirement and create a migration plan for any services i.e. DNS, DHCP, and Certificate Services (PKI) etc. Analyzing the requirement and design a solution to fulfil the requirement with zero impact to other platforms Develop a power shell scripting with AD modules or VB .Net based on the requirements Manage Azure active directory design, Architect Solutions, Integration with platforms & Applications and AD connector to Azure Auditing the security logs and integrating with SIEM Conducting POC with multiple vendors for AD solutions and prepare detailed test cases. Create a clear recommendation document with pros and cons for senior management Vulnerability Assessment and Management related to Active Directory, DNS & Windows platforms Active Directory consolidations including application integration working with application teams Recommend security best practices to achieve stated business objectives, advises on risk assumptions for any variances granted, and provides alternatives to achieve desired end results Required Qualifications: Minimum 5 years relevant experience in Architecture and designing, solutions & Migrating Active Directory, Azure AD, Windows & End points Strong Demonstrated experience with Active Directory migration tool or equivalent and consolidation of Global Forest and Domains. Hands on experience in successful consolidation of AD Forests and Domains Good Knowledge on (MIM) Microsoft Identity Management 2016 or above, earlier versions would be a plus. Must have hands-on experience working on Azure AD (Azure Active Directory) Extensive Experience working as Azure Admin for enterprise Active Directory setup and maintenance Strong experience in AD Trusts, two-way Trusts and one-way Trusts and deep knowledge of Active Directory Schemas and meta data Strong Knowledge on Azure AD Identity Management & Integration with on premise Strong knowledge of Azure Active Directory technologies, including authentication models, federation, Multifactor Authentication (MFA), conditional access policies and other relevant capabilities. Knowledge of best practices in AD/Azure Privileged access management and modern AD/Azure Secured Administration practices Strong PowerShell scripting Strong Knowledge on IAM disciplines like PIM and Privilege Administrative Accounts PAM solutions such as CyberArk Good knowledge on ADFS and Azure AD sync connectors Strong familiarity with DNS Active Directory integrated, partitions and Infoblox & DHCP systems and Migration of services from Active Directory any platform Demonstrated knowledge and experience in AD assessment in terms of OU delegation, GPOs, permission etc., Expertise in Active Directory versions 2003, 2008R2, 2012R2 & 2016, 2019 and Azure Active Directory Good knowledge and hands on experience in setting up lab based on the solution requirements Demonstrated working knowledge and hands on experience in AD disaster recovery, Replication issues and resolution using tools such as repadmin Demonstrated experience in writing and applying GPOs, especially related to domain consolidations Good Knowledge on Active Directory & windows audit logs and levels and SIEM integration Good knowledge on Networking, firewalls, including host firewalls, DNS, DHCP, DFS & Network load balancers and Secure Global Directory or Secure LDAP Good knowledge on Cryptography, certificates, PKI, symmetric, asymmetric keys, Encryption & hash algorithms Good knowledge on AD authentication protocols Kerberos, NTLM, LDAP, LDAPS & LDAP-Start TLS Good knowledge on Network log capturing & analyzing the network packet captures through the tools Wireshark, Tshark, Microsoft NM etc., Good knowledge on application integration with LDAP & Kerberos i.e. Keytab, krb5 etc., Good knowledge on AD migration tools like ADMT, Quest etc., knowledge on AD trusts, forest, domain tree structures, sites, DNS, GPOs, OU, FRS, DFSR. Good knowledge on any Identity & Access Management tools like FIM, MIM, OIM, Quest etc., Exposure to SAML, OAuth, OpenID and other security/IAM related standards Strong hands-on familiarity with host-based security solutions, Forensic & Investigation agents, and Compliance scanning and reporting, Hardening Active Directory Knowledge of single sign-on, federation, active directory/LDAP, Kerberos/NTLM authentication & integrated Windows authentication Good knowledge on Identity management and Role based access control, attribute-based access control & entitlement management Good knowledge on power shell scripting with AD modules or VB .Net and ability to write scripts based on the requirement Excellent communication skills, especially verbal and written Good documentation skills to write a design & configuration documents version controls Excellent Interpersonal skill and ability to work as part of a team Home office for remote work Ability to work some weekends and late nights performing approved changes ITIL V3 or later experience, experience in writing change request and attending Change Advisory Boards (CAB) meeting Experience with Security Controls and compliance About NTT DATA NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity. We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client's needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, . NTT DATA endeavors to make accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at . This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click . If you'd like more information on your EEO rights under the law, please click . For Pay Transparency information, please click.

Sr Cloud Consultant - Technical Security An experienced consulting professional who has an understanding of solutions, industry best practices, multiple business processes or technology designs within a product/technology family. Operates independently to provide quality work products to an engagement. Performs varied and complex duties and tasks that need independent judgment, in order to implement Oracle products and technology to meet customer needs. Applies Oracle methodology, company procedures, and leading practices. Career Level - IC3 Oracle Global Services Center (GSC) is the global offshore center for Oracle Consulting and is into implementing Oracle Cloud Applications for top global customers across various regions. Operating in the Global Blended Delivery model involving onshore and offshore teams optimizing the delivery for the customers. The team at offshore is involved in implementing Cloud Applications for customers across the regions with focus on North America, along with our regional consulting counterparts. The offshore team develops solutions to complex requirements and does Proof of Concepts, demonstrates the solutions, configures the applications, performs validations, designs solutions to customizations including integrations, reports, conversions, extensions and accompanied security. They ensure best practices are established, adopted, institutionalized and evangelized. They participate in internal and external professional communities, develop industry best practices and publish papers. They contribute to asset harvesting and building and invest in tools development. They may be expected to groom, coach and mentor teams with a people manager responsibility. Qualifications: . BE . MBA (Fin/SCM) would be preferred Oracle Experience: . Candidate with 5 to 8 years of total experience with at least 2 to 3 years of Oracle EBS/Cloud ERP Applications implementation experience and remaining industry experience in Technology, Infrastructure, Finance, Accounting and Risk Management . Preference would be given for Cloud Risk Management & Compliance implementation experience . Experience in Technical Security areas covering Cloud Security (preferably OCI security) and others including Azure, AWS, GCP. . Experience in implementation of federated SSO access with third party IdaaS Identity Providers like Okta, OneLogin, Azure EntraId, etc. . Have understanding and experience in Identity Governance and Administration (IGA) tools like Oracle Access Governance. . At least 2 full life cycle implementations, preferably with US implementation experience . Candidate would be expected to : - Implement end to end customer technical use cases understanding their functional and business use-cases for Oracle Fusion Cloud - Have an oversight of overall security footprint including IaaS (OCI), PaaS (PaaS4Saas) and SaaS (ERPM, SCM, CX and HCM) - Be able to translate business requirements of customers security office into implementable security scope items. - Be able to understand, enable and configure Threat Governance and Security Posture Management tools like Oracle Cloud Guard. - Have implementation knowledge of configuring Web Application Firewalls (WAF), SIEM integration and Access Control Lists. - Be able to Identify and configure SOD configuration of roles in IGA tools like Access Governance. - Understand and Implement Advanced Access Control as part of Oracle Risk Management Cloud - Mitigate business risks by implementing appropriate controls Soft Skills: . Excellent communication skills - both written & verbal, mandatory . Good interpersonal skills with ability to build rapport with all stakeholders. . Ability to present ideas and solutions in a clear & concise manner. . Self-motivated with a lot of energy and drive. Should have the ability and willingness to learn. . Should be good team player and have good analytical skills Career Level - IC3

As a Network Security Engineer at Corning, your primary responsibility will be to install and connect firewalls and other security appliances, ensuring the latest vendor-approved stable firmware is installed. You will be tasked with monitoring firewalls for up/down or issues, conducting root cause analysis, and providing detailed reporting. Additionally, you will create virtual firewalls with appropriate configurations and policies, configure remote access VPN and site-to-site VPN functionality, and integrate firewalls with various systems and products. Your role will involve configuring firewall interfaces, network configurations, access control lists, policies, routing, remote access (VPN), and next-generation firewall feature sets following best practices. You will also integrate firewalls with Camstar and other custom MES systems, as well as with Ivanti Pulse Secure and other Juniper products as required. Moreover, you will provide support for out-of-band connectivity devices, log collectors, and SIEM Integration, while creating and managing firewall rulesets. As an ideal candidate for this position, you should possess a Bachelor's degree in computer science, Software Engineering, or a related field, or have an equivalent combination of training and experience. A minimum of 3 years of Juniper and Palo Alto experience as a network security engineer is required, along with one year of Manufacturing or Operational Technology experience. Certification in Juniper JNCIP-SEC is mandatory, with JNCIE-SEC being optional for a senior role. Additionally, you should have extensive working knowledge of TCP/IP, routing protocols, L2/L3 switches, and security products such as firewalls, IPSec, IDS/IPS, Anti-Spam, and virus scanning. Experience in a technical support role in a networking/security company or equivalent education is highly desirable. Strong familiarity with Windows, UNIX, or Linux operating systems is expected, as well as the ability to perform advanced troubleshooting on a range of Juniper SRX and Palo Alto products. Moreover, you should be capable of consulting technical documentation, bulletins, and release notes for known problems, analyzing packet trace information, and recommending corrective actions based on the analysis. Excellent communication skills, both verbal and written, are essential, as is the ability to manage customer communications and expectations until the closure of each case. You should be willing to work after hours and be part of an on-call rotation, demonstrating a commitment to resolving technical issues promptly and efficiently.,

As a Senior Cloud Consultant - Technical Security at Oracle Global Services Center (GSC), you will be a key player in implementing Oracle Cloud Applications for top global customers across various regions. Operating within the Global Blended Delivery model involving onshore and offshore teams, you will be responsible for developing solutions to complex requirements, conducting Proof of Concepts, configuring applications, performing validations, designing custom solutions including integrations, reports, conversions, extensions, and ensuring security measures are in place. Your role will also involve actively participating in internal and external professional communities, developing industry best practices, contributing to asset harvesting, and investing in tools development. Additionally, you may be expected to groom, coach, and mentor teams as well as take on people manager responsibilities. Qualifications: - BE/MBA (Fin/SCM preferred) - 5 to 8 years of total experience with 2 to 3 years in Oracle EBS/Cloud ERP Applications implementation - Experience in Technology, Infrastructure, Finance, Accounting, and Risk Management - Preference for Cloud Risk Management & Compliance implementation experience - Proficiency in Technical Security areas covering Cloud Security (OCI, Azure, AWS, GCP) - Experience in implementing federated SSO access with third party IdaaS Identity Providers - Understanding and experience in Identity Governance and Administration (IGA) tools - Implementation knowledge of Threat Governance, Security Posture Management tools, WAF, SIEM integration, and Access Control Lists - Ability to translate business requirements into implementable security scope items - Implement Advanced Access Control as part of Oracle Risk Management Cloud Soft Skills: - Excellent communication skills (both written & verbal) - Good interpersonal skills with the ability to build rapport with stakeholders - Ability to present ideas and solutions clearly & concisely - Self-motivated with a lot of energy and drive - Strong team player with good analytical skills Join Oracle, a world leader in cloud solutions, and be part of a diverse and inclusive workforce that promotes opportunities for all. Benefit from competitive benefits, flexible medical, life insurance, and retirement options, while contributing to volunteer programs that give back to communities. We are committed to including people with disabilities at all stages of the employment process, providing accessibility assistance or accommodation when needed.,

Job Summary We are seeking an experienced EBS Finance Consultant to join our dynamic team. The ideal candidate will have a strong background in Oracle E-Business Suite (EBS) Finance modules and will work on implementing, supporting, and enhancing EBS Finance solutions for our clients. Key Responsibilities Implement and support Oracle EBS Finance modules including AP, AR, GL, FA, and CM. Collaborate with business stakeholders to gather requirements and design solutions. Perform system configurations, testing, documentation, and training. Troubleshoot issues and provide timely resolutions. Ensure system integrity and compliance with financial regulations. Work on upgrades, enhancements, and patch applications. Required Skills and Qualifications Minimum 6 years of hands-on experience with Oracle EBS Finance. In-depth knowledge of Oracle Financials modules (GL, AP, AR, FA, CM). Strong analytical and problem-solving skills. Excellent communication and interpersonal skills. Ability to work independently and in a team environment. Why Join Us Competitive salary and benefits Opportunity to work with cutting-edge technologies Collaborative and growth-oriented culture Chance to be part of strategic transformation projects If you are passionate about Oracle EBS Finance and ready to take the next step in your career, we d love to hear from you.

The STM EndPoint Protection-JL10 role is responsible for ensuring the security of the organization's endpoints through the development and implementation of effective protection strategies. This position requires a strong understanding of cybersecurity principles and the ability to respond to and mitigate potential security threats. Responsibilities Develop and implement endpoint protection strategies to safeguard the organization's data and systems. Monitor and analyze security alerts and incidents to respond to potential threats. Conduct regular assessments and audits to ensure compliance with security policies and protocols. Collaborate with IT teams to enhance endpoint security configurations and policies. Provide training and support to end-users on best practices for endpoint security. Stay updated with the latest security trends, vulnerabilities, and technologies. Document and report on security incidents, including root cause analysis and remediation efforts. Skills and Qualifications In-depth knowledge of endpoint protection technologies and tools. Experience with security frameworks and compliance standards (e.g., ISO 27001, NIST, GDPR). Proficiency in threat detection and incident response methodologies. Strong understanding of operating systems (Windows, Linux, MacOS) and network protocols. Experience with antivirus and anti-malware solutions. Ability to analyze security logs and identify potential threats. Excellent problem-solving and analytical skills. Strong communication and collaboration skills.

Job Description Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion it's a place where you can grow, belong and thrive. Your day at NTT DATA The Security Managed Services Engineer (L2) is a developing engineering role, responsible for providing a managed service to clients to ensure that their Security Infrastructures and systems remain operational. Through the proactive monitoring, identifying, investigating, and resolving of technical incidents and problems, this role is able to restore service to clients. The primary objective of this role is to proactively review client requests or tickets and apply technical/process knowledge to resolve them without breaching service level agreement (SLA) and focuses on second-line support for incidents and requests with a medium level of complexity. The Security Managed Services Engineer (L2) may also contribute to / support on project work as and when required. What you'll be doing Key Responsibilities: Proactively monitors the work queues. Performs operational tasks to resolve all incidents/requests in a timely manner and within the agreed SLA. Updates tickets with resolution tasks performed. Identifies, investigates, analyses issues and errors prior to or when they occur, and logs all such incidents in a timely manner. Captures all required and relevant information for immediate resolution. Provides second level support to all incidents, requests and identifies the root cause of incidents and problems. Communicates with other teams and clients for extending support. Executes changes with clear identification of risks and mitigation plans to be captured into the change record. Follows the shift handover process highlighting any key tickets to be focused on along with a handover of upcoming critical tasks to be carried out in the next shift. Escalates all tickets to seek the right focus from CoE and other teams, if needed continue the escalations to management. Works with automation teams for effort optimization and automating routine tasks. Ability to work across various other resolver group (internal and external) like Service Provider, TAC, etc. Identifies problems and errors before they impact a client's service. Provides Assistance to L1 Security Engineers for better initial triage or troubleshooting. Leads and manages all initial client escalation for operational issues. Contributes to the change management process by logging all change requests with complete details for standard and non-standard including patching and any other changes to Configuration Items. Ensures all changes are carried out with proper change approvals. Plans and executes approved maintenance activities. Audits and analyses incident and request tickets for quality and recommends improvements with updates to knowledge articles. Produces trend analysis reports for identifying tasks for automation, leading to a reduction in tickets and optimization of effort. May also contribute to / support on project work as and when required. May work on implementing and delivering Disaster Recovery functions and tests. Performs any other related task as required. Knowledge and Attributes: Ability to communicate and work across different cultures and social groups. Ability to plan activities and projects well in advance, and takes into account possible changing circumstances. Ability to maintain a positive outlook at work. Ability to work well in a pressurized environment. Ability to work hard and put in longer hours when it is necessary. Ability to apply active listening techniques such as paraphrasing the message to confirm understanding, probing for further relevant information, and refraining from interrupting. Ability to adapt to changing circumstances. Ability to place clients at the forefront of all interactions, understanding their requirements, and creating a positive client experience throughout the total client journey. Academic Qualifications and Certifications: Bachelor's degree or equivalent qualification in IT/Computing (or demonstrated equivalent work experience). Certifications relevant to services supported. Certifications carry additional weightage on the candidate's qualification for the role. CCNA certification in must, CCNP in Security or PCNSE certification is good to have. Required Experience: Moderate level of relevant managed services experience handling Security Infrastructure. Moderate level of knowledge in ticketing tools preferably Service Now. Moderate level of working knowledge of ITIL processes. Moderate level of experience working with vendors and/or 3rd parties. Workplace type: On-site Working

Role & responsibilities Security Program & Project Delivery Lead the planning, execution, and delivery of security initiatives including vulnerability management programs, NAC implementation, SIEM integration, and incident response enhancements. Coordinate cross-functional security projects across IT, infrastructure, compliance, and executive stakeholders. Ensure alignment with security frameworks including NIST, ISO 27001, CIS Controls, MITRE ATT&CK , and regulatory standards like HIPAA and GDPR . Technical Oversight & Reporting Act as the SME across multiple domains including cloud security (AWS, Azure, GCP), endpoint security (Crowdstrike, Symantec), and network security (Fortinet, NAC, IDS/IPS). Translate technical requirements into business-aligned roadmaps and timelines. Own the development of project documentation including scope, timelines, resource allocation, risk logs, and communications plans. Vulnerability & Risk Management Collaborate with vulnerability and threat management teams to prioritize and drive remediation projects. Design and deliver reporting dashboards and metrics (KPIs/KRIs) for executive leadership. Support remediation planning from external assessments (e.g., Red/Purple Team, penetration testing). Incident Response Coordination Partner with SOC and engineering teams to ensure effective execution of the Cyber Incident Response Plan (CIRP). Facilitate tabletop exercises, after-action reviews, and response drills aligned with NIST 2.0 . Vendor & Stakeholder Management Coordinate security vendor evaluations, POCs, onboarding, and performance reviews. Work with 3rd party consultants, auditors, and MDR service providers to ensure timely delivery of contracted services. Act as liaison between technical teams and leadership to manage expectations and ensure strategic alignment. Continuous Improvement & Governance Maintain and update project governance structures to align with industry best practices. Champion continuous improvement by assessing and refining project methodologies, tools, and templates. Contribute to policy updates, compliance audits, and control gap remediation plans. Required Skills & Qualifications: Bachelors degree in Cybersecurity, Information Technology, or related field. 8+ years of IT experience with a minimum of 3–5 years in a dedicated cybersecurity or InfoSec project management role . Proven success delivering complex, cross-functional security projects in manufacturing, healthcare, or enterprise environments . Strong understanding of cybersecurity domains including cloud security, endpoint protection, identity management, and threat detection. Familiarity with GRC processes, compliance audits, and risk frameworks (NIST, ISO, CIS, HIPAA, GDPR). Proficiency in project management tools (e.g., Jira, MS Project, Smartsheet) and reporting dashboards (e.g., Power BI, Tableau). Exceptional written and verbal communication skills , including executive-level presentation and documentation abilities. Preferred Certifications: PMP, PRINCE2, or equivalent Project Management certification CISSP, CISM, or CISA (strongly preferred) Certified ScrumMaster (CSM) or other Agile experience a plus

Responsibility Designing, implementing, and managing security infrastructure, including hardware and software components. Configuring and maintaining security devices such as firewalls, intrusion detection/prevention systems, and security information and event management (SIEM) systems. Participating in incident response activities and investigations. Developing and maintaining incident response playbooks and procedures. Developing and implementing automation scripts and tools to streamline security operations processes. Integrating security solutions and technologies to enhance efficiency. Evaluating, deploying, and managing security tools and technologies. Ensuring the effectiveness and optimization of security solutions. Collaborating with security architects to design and implement secure network and system architectures. Providing input into the development of security policies and standards. Demonstrate the ability to independently deliver without significant senior support/escalation. Build rapport with senior stakeholders to continually broaden and strengthen relationships. Present with presence and confidence to leadership and senior stakeholders. Drive and contribute to a positive and constructive culture. Share knowledge and implement opportunities for improvement from lessons learned activities. Continuously monitor network traffic for potential threats. Respond promptly to security incidents and conduct investigations. Identify and remediate system vulnerabilities. Implement and manage security measures for computers and servers. Design and maintain network security controls. Manage user access and implement multi-factor authentication. Develop and deliver cybersecurity training programs. Enforce security policies and ensure regulatory compliance. Stay informed about cybersecurity threats and trends. Assess and enhance the organization's cybersecurity posture. Work with IT teams and stakeholders for a holistic approach to security. Qualifications Required: BE/B. Tech/MCA 4+ years with a cyber SIEM engineering role (Ideally Splunk) Expertise in use case/content and dashboard development Experience in custom data source onboarding and understanding of end-2-end SIEM integration/architecture. Be part of on call roster Splunk CISSP, CISM, SANS certification (good to have) Effective technical stakeholder's management Experience in mentoring and training junior analyst Presentation and Process development (must have) Excellent written and verbal communication skills (must have) Report creation and project skills Work Location : Hyderabad Shift Timings: 06.30 AM to 03.30 PM

Physically install and connect firewalls and other security appliances. Install the latest vendor-approved stable firmware on appliances. Monitor firewalls for up/down or issues, document, root cause analysis, reporting. Create virtual firewalls with appropriate configurations and policies. Configure remote access VPN and site-to-site VPN functionality. Configure firewall interfaces, network configurations, access control lists and policies, routing, remote access (VPN), and next-generation firewall feature sets implementing best practices. Integrate firewall with Camstar and other custom MES systems. Integrate firewall with Ivanti Pulse Secure and other Juniper products as required. Support out-of-band connectivity devices, and log collectors. Configure SIEM Integration Advanced troubleshooting on the full range of Juniper SRX and Palo Alto products Collection, analysis, and change recommendations of configuration information to streamline support and minimize impact to manufacturing. Collection and initial analysis of packet trace information and recommend corrective actions based on the analysis. Consultation of technical documentation, bulletins, and release notes for known problems Follow up on technical cases, including proper escalation and management of the case Manage customer communications and expectations until the closure of each case, including vendor escalations, device RMA, and coordination suort. Create or maintain standard operating procedures. Able to work after hours and/or be part of an on-call rotation