655 Spl Jobs

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. CMSTDR Senior (TechOps) KEY Capabilities: Experience in working with Splunk Enterprise, Splunk Enterprise Security & Splunk UEBA Minimum of Splunk Power User Certification Good knowledge in programming or Scripting languages such as Python (preferred), JavaScript (preferred), Bash, PowerShell, Bash, etc. Perform remote and on-site gap assessment of the SIEM solution. Define evaluation criteria & approach based on the Client requirement & scope factoring industry best practices & regulations Conduct interview with stakeholders, review documents (SOPs, Architecture diagrams etc.) Evaluate SIEM based on the defined criteria and prepare audit reports Good experience in providing consulting to customers during the testing, evaluation, pilot, production and training phases to ensure a successful deployment. Understand customer requirements and recommend best practices for SIEM solutions. Offer consultative advice in security principles and best practices related to SIEM operations Design and document a SIEM solution to meet the customer needs Experience in onboarding data into Splunk from various sources including unsupported (in-house built) by creating custom parsers Verification of data of log sources in the SIEM, following the Common Information Model (CIM) Experience in parsing and masking of data prior to ingestion in SIEM Provide support for the data collection, processing, analysis and operational reporting systems including planning, installation, configuration, testing, troubleshooting and problem resolution Assist clients to fully optimize the SIEM system capabilities as well as the audit and logging features of the event log sources Assist client with technical guidance to configure end log sources (in-scope) to be integrated to the SIEM Experience in handling big data integration via Splunk Expertise in SIEM content development which includes developing process for automated security event monitoring and alerting along with corresponding event response plans for systems Hands-on experience in development and customization of Splunk Apps & Add-Ons Builds advanced visualizations (Interactive Drilldown, Glass tables etc.) Build and integrate contextual data into notable events Experience in creating use cases under Cyber kill chain and MITRE attack framework Capability in developing advanced dashboards (with CSS, JavaScript, HTML, XML) and reports that can provide near real time visibility into the performance of client applications. Experience in installation, configuration and usage of premium Splunk Apps and Add-ons such as ES App, UEBA, ITSI etc Sound knowledge in configuration of Alerts and Reports. Good exposure in automatic lookup, data models and creating complex SPL queries. Create, modify and tune the SIEM rules to adjust the specifications of alerts and incidents to meet client requirement Work with the client SPOC to for correlation rule tuning (as per use case management life cycle), incident classification and prioritization recommendations Experience in creating custom commands, custom alert action, adaptive response actions etc. Qualification & experience: Minimum of 3 to 10 years’ experience with a depth of network architecture knowledge that will translate over to deploying and integrating a complicated security intelligence solution into global enterprise environments. Strong oral, written and listening skills are an essential component to effective consulting. Strong background in network administration. Ability to work at all layers of the OSI models, including being able to explain communication at any level is necessary. Must have knowledge of Vulnerability Management, Windows and Linux basics including installations, Windows Domains, trusts, GPOs, server roles, Windows security policies, user administration, Linux security and troubleshooting. Good to have below mentioned experience with designing and implementation of Splunk with a focus on IT Operations, Application Analytics, User Experience, Application Performance and Security Management Multiple cluster deployments & management experience as per Vendor guidelines and industry best practices Troubleshoot Splunk platform and application issues, escalate the issue and work with Splunk support to resolve issues Certification in any one of the SIEM Solution such as IBM QRadar, Exabeam, Securonix will be an added advantage Certifications in a core security related discipline will be an added advantage. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. CMSTDR Senior (TechOps) KEY Capabilities: Experience in working with Splunk Enterprise, Splunk Enterprise Security & Splunk UEBA Minimum of Splunk Power User Certification Good knowledge in programming or Scripting languages such as Python (preferred), JavaScript (preferred), Bash, PowerShell, Bash, etc. Perform remote and on-site gap assessment of the SIEM solution. Define evaluation criteria & approach based on the Client requirement & scope factoring industry best practices & regulations Conduct interview with stakeholders, review documents (SOPs, Architecture diagrams etc.) Evaluate SIEM based on the defined criteria and prepare audit reports Good experience in providing consulting to customers during the testing, evaluation, pilot, production and training phases to ensure a successful deployment. Understand customer requirements and recommend best practices for SIEM solutions. Offer consultative advice in security principles and best practices related to SIEM operations Design and document a SIEM solution to meet the customer needs Experience in onboarding data into Splunk from various sources including unsupported (in-house built) by creating custom parsers Verification of data of log sources in the SIEM, following the Common Information Model (CIM) Experience in parsing and masking of data prior to ingestion in SIEM Provide support for the data collection, processing, analysis and operational reporting systems including planning, installation, configuration, testing, troubleshooting and problem resolution Assist clients to fully optimize the SIEM system capabilities as well as the audit and logging features of the event log sources Assist client with technical guidance to configure end log sources (in-scope) to be integrated to the SIEM Experience in handling big data integration via Splunk Expertise in SIEM content development which includes developing process for automated security event monitoring and alerting along with corresponding event response plans for systems Hands-on experience in development and customization of Splunk Apps & Add-Ons Builds advanced visualizations (Interactive Drilldown, Glass tables etc.) Build and integrate contextual data into notable events Experience in creating use cases under Cyber kill chain and MITRE attack framework Capability in developing advanced dashboards (with CSS, JavaScript, HTML, XML) and reports that can provide near real time visibility into the performance of client applications. Experience in installation, configuration and usage of premium Splunk Apps and Add-ons such as ES App, UEBA, ITSI etc Sound knowledge in configuration of Alerts and Reports. Good exposure in automatic lookup, data models and creating complex SPL queries. Create, modify and tune the SIEM rules to adjust the specifications of alerts and incidents to meet client requirement Work with the client SPOC to for correlation rule tuning (as per use case management life cycle), incident classification and prioritization recommendations Experience in creating custom commands, custom alert action, adaptive response actions etc. Qualification & experience: Minimum of 3 to 10 years’ experience with a depth of network architecture knowledge that will translate over to deploying and integrating a complicated security intelligence solution into global enterprise environments. Strong oral, written and listening skills are an essential component to effective consulting. Strong background in network administration. Ability to work at all layers of the OSI models, including being able to explain communication at any level is necessary. Must have knowledge of Vulnerability Management, Windows and Linux basics including installations, Windows Domains, trusts, GPOs, server roles, Windows security policies, user administration, Linux security and troubleshooting. Good to have below mentioned experience with designing and implementation of Splunk with a focus on IT Operations, Application Analytics, User Experience, Application Performance and Security Management Multiple cluster deployments & management experience as per Vendor guidelines and industry best practices Troubleshoot Splunk platform and application issues, escalate the issue and work with Splunk support to resolve issues Certification in any one of the SIEM Solution such as IBM QRadar, Exabeam, Securonix will be an added advantage Certifications in a core security related discipline will be an added advantage. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

3 - 5 Years 2 Openings Trivandrum Role description Sr. Splunk SME/Enterprise Monitoring Engineer Splunk SME/Enterprise Monitoring Engineer 3+ years of hands-on experience with Splunk Enterprise as an admin, architect, or engineer. • Experience designing and managing large-scale, multi-site Splunk deployments. • Strong skills in SPL (Search Processing Language), dashboard design, and ing strategies. • Familiarity with Linux systems, scripting (e.g., Bash, Python), and APIs. • Experience with enterprise monitoring tools and integration with Splunk (e.g., AppDynamics, Dynatrace, Nagios, Zabbix, etc.). • Understanding of logging, metrics, and tracing in modern environments (on-prem and cloud). • Strong understanding of network protocols, system logs, and application telemetry. • Serve as the SME for Splunk architecture, deployment, and configuration across the enterprise. • Maintain and optimize Splunk infrastructure, including indexers, forwarders, search heads, and clusters. • Develop and manage custom dashboards, s, saved searches, and visualizations. • Implement and tune log ingestion pipelines using Splunk Universal Forwarders, HTTP Event Collector, and other data inputs. • Ensure high availability, scalability, and performance of the Splunk environment. • Creating dashboards, Reports, s, Advance Splunk Search, Visualization, log parsing and external table lookups • Expertise with SPL (Search Processing Language ) and understanding of Splunk architecture, including configuration files. • Wide Experience in monitoring and troubleshooting applications using tools like AppDynamics, Splunk, Grafana, Argos ,OTEL, etc. to build observability for large-scale microservice deployments. • Creating dashboards for various applications to monitor health, network issues and configure s. • Excellent problem-solving, triaging, and debugging skills in large-scale distributed systems • Establishing and documenting run books and guidelines for using the multi-cloud infrastructure and microservices platform. • Experience in optimized search queries using summary indexing. • Solid knowledge and experience in monitoring the Splunk infrastructure. • Develop a long-term strategy and roadmap for AI/ML tooling to support the AI capabilities across the Splunk portfolio. • Diagnose and resolve network-related issues affecting CI/CD pipelines, debug DNS, firewall, proxy, and SSL/TLS problems, and use tools like tcpdump, curl, and netstat for proactive maintenance. Enterprise Monitoring & Observability • Design and implement holistic enterprise monitoring solutions integrating Splunk with tools like AppDynamics, Dynatrace, Prometheus, Grafana, SolarWinds, or others. • Collaborate with application, infrastructure, and security teams to define monitoring KPIs, SLAs, and thresholds. • Build end-to-end visibility into application performance, system health, and user experience. • Integrate Splunk with ITSM platforms (e.g., ServiceNow) for event and incident management automation. Operations, Troubleshooting & Optimization • Perform data onboarding, parsing, and field extraction for structured and unstructured data sources. • Support incident response and root cause analysis using Splunk for troubleshooting and forensics. • Regularly audit and optimize search performance, data retention policies, and index lifecycle management. • Create runbooks, documentation, and SOPs for Splunk and monitoring tool usage. Skills Splunk,Devops Tools,Bash,DEVOPS About UST UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world’s best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients’ organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact—touching billions of lives in the process.

Job Summary As a Senior Technical Services Engineer, you will play a key role in implementing, configuring, and supporting advanced data analytics solutions. The position involves working closely with customers, delivering technical services, training, and ensuring seamless deployment of enterprise systems. Key Responsibilities Deliver technology solutions and consulting services for enterprise clients. Support system architecture design, implementation, testing, and customer training. Develop parsers, dashboards, alerts, and other platform content. Collaborate with project teams to achieve customer goals. Participate in solution presentations and identify opportunities for service expansion. Translate business requirements into complex system and application designs. Act as a customer advocate in internal discussions. Travel to customer sites as needed. Requirements Bachelor’s degree in a technical field (or equivalent experience). 3+ years in technical services implementation and/or software engineering. Strong expertise in Regular Expressions and data parsing . Proficiency in Python scripting . Experience with Big Data queries (SPL, SQL, LINQ, etc.). Hands-on experience installing and configuring enterprise technology products. Familiarity with Linux and Windows OS . Knowledge of AWS services (S3, Lambda, CloudTrail, etc.) preferred. Exposure to SIEM solutions (Splunk, Elastic, ArcSight, QRadar) highly desirable. Experience with data visualization tools (Power BI, Tableau) is a plus. Background in cybersecurity, SIEM deployment, or SOC environments preferred. Core Competencies Customer Focus & Advocacy Problem-Solving & Resourcefulness Tech-Savvy & Results Driven Strong Collaboration & Communication Skills Job Type: Full-time Pay: ₹1,950,000.00 - ₹5,850,000.00 per year Benefits: Flexible schedule Health insurance Leave encashment Paid time off Provident Fund Work Location: In person

Role Description Sr. Splunk SME/Enterprise Monitoring Engineer Splunk SME/Enterprise Monitoring Engineer 3+ years of hands-on experience with Splunk Enterprise as an admin, architect, or engineer. Experience designing and managing large-scale, multi-site Splunk deployments. Strong skills in SPL (Search Processing Language), dashboard design, and ing strategies. Familiarity with Linux systems, scripting (e.g., Bash, Python), and APIs. Experience with enterprise monitoring tools and integration with Splunk (e.g., AppDynamics, Dynatrace, Nagios, Zabbix, etc.). Understanding of logging, metrics, and tracing in modern environments (on-prem and cloud). Strong understanding of network protocols, system logs, and application telemetry. Serve as the SME for Splunk architecture, deployment, and configuration across the enterprise. Maintain and optimize Splunk infrastructure, including indexers, forwarders, search heads, and clusters. Develop and manage custom dashboards, s, saved searches, and visualizations. Implement and tune log ingestion pipelines using Splunk Universal Forwarders, HTTP Event Collector, and other data inputs. Ensure high availability, scalability, and performance of the Splunk environment. Creating dashboards, Reports, s, Advance Splunk Search, Visualization, log parsing and external table lookups Expertise with SPL (Search Processing Language ) and understanding of Splunk architecture, including configuration files. Wide Experience in monitoring and troubleshooting applications using tools like AppDynamics, Splunk, Grafana, Argos ,OTEL, etc. to build observability for large-scale microservice deployments. Creating dashboards for various applications to monitor health, network issues and configure s. Excellent problem-solving, triaging, and debugging skills in large-scale distributed systems Establishing and documenting run books and guidelines for using the multi-cloud infrastructure and microservices platform. Experience in optimized search queries using summary indexing. Solid knowledge and experience in monitoring the Splunk infrastructure. Develop a long-term strategy and roadmap for AI/ML tooling to support the AI capabilities across the Splunk portfolio. Diagnose and resolve network-related issues affecting CI/CD pipelines, debug DNS, firewall, proxy, and SSL/TLS problems, and use tools like tcpdump, curl, and netstat for proactive maintenance. Enterprise Monitoring & Observability Design and implement holistic enterprise monitoring solutions integrating Splunk with tools like AppDynamics, Dynatrace, Prometheus, Grafana, SolarWinds, or others. Collaborate with application, infrastructure, and security teams to define monitoring KPIs, SLAs, and thresholds. Build end-to-end visibility into application performance, system health, and user experience. Integrate Splunk with ITSM platforms (e.g., ServiceNow) for event and incident management automation. Operations, Troubleshooting & Optimization Perform data onboarding, parsing, and field extraction for structured and unstructured data sources. Support incident response and root cause analysis using Splunk for troubleshooting and forensics. Regularly audit and optimize search performance, data retention policies, and index lifecycle management. Create runbooks, documentation, and SOPs for Splunk and monitoring tool usage. Skills Splunk,Devops Tools,Bash,DEVOPS

Calling all innovators – find your future at Fiserv. We’re Fiserv, a global leader in Fintech and payments, and we move money and information in a way that moves the world. We connect financial institutions, corporations, merchants, and consumers to one another millions of times a day – quickly, reliably, and securely. Any time you swipe your credit card, pay through a mobile app, or withdraw money from the bank, we’re involved. If you want to make an impact on a global scale, come make a difference at Fiserv. Job Title Specialist, Application Support (Splunk Dev) Detailed Job Description Job Posting Title: Specialist, Application Support (Splunk Dev) Work Location – Noida OR Bangalore OR Chennai Experience - 3-6 Years Mandatory Skills - File Monitoring Setup Using Splunk What a Successful File Monitoring Setup Using Splunk Involves Dashboard Development & Management: Design and maintain advanced Splunk dashboards to deliver comprehensive insights into system performance and File Transmission component health. Performance Optimization: Improve dashboard efficiency when handling large datasets using techniques such as optimized queries, summary indexing, and data models. Advanced Regex Utilization: Apply sophisticated regular expressions to create accurate search queries and extract meaningful data. Custom Alert Configuration: Implement highly customized alerting mechanisms to detect anomalies, manage alert actions, throttle conditions, and integrate with lookup tables and dynamic time-based arguments. File Transmission Monitoring: Track and report on each stage of file transmission, continuously refining monitoring strategies for enhanced reliability and visibility. Cross-Functional Collaboration: Work closely with various teams to integrate Splunk monitoring with broader IT systems and workflows. Conduct discovery of file transmission workflows, including file life cycle, endpoint configurations, log analysis, SLA definitions, and exception scenarios. Develop and deploy advanced Splunk queries to ensure end-to-end visibility into file transmission processes. Configure and optimize alerting mechanisms for timely detection and resolution of issues. Design and implement IT Service Intelligence (ITSI) strategies to enhance monitoring capabilities and deliver actionable insights. Establish and manage monitoring frameworks based on the file life cycle to ensure traceability and accountability. Collaborate with IT and operations teams to integrate Splunk with other tools and resolve data ingestion issues. Analyze monitoring data to identify trends, detect anomalies, and recommend improvements. Serve as a Splunk subject matter expert, providing guidance, best practices, and training to team members. What You Will Need To Have Education: Bachelor’s and/or Master’s degree in Information Technology, Computer Science, or a related field. Experience: Minimum of 3+ years in IT, with a focus on Splunk, SFTP tools, data integration, or technical support roles. Splunk Expertise: Proficiency in advanced SPL techniques including subsearches, joins, and statistical functions. Regex Proficiency: Strong command of regular expressions for search and data extraction. Database Skills: Experience with relational databases and writing complex SQL queries with advanced joins. File Transmission Tools: Hands-on experience with platforms like Sterling File Gateway, IBM Sterling, or other MFT solutions. Analytical Thinking: Proven problem-solving skills and the ability to troubleshoot technical issues effectively. Communication: Strong verbal and written communication skills for collaboration with internal and external stakeholders. Attention to Detail: High level of accuracy to ensure data integrity and reliability. What Would Be Great To Have Scripting & Automation: Proficiency in Python or similar scripting languages to automate monitoring tasks. Tool Experience: Familiarity with tools such as Dynatrace, Sterling File Gateway, and other MFT solutions. Linux Proficiency: Strong working knowledge of Linux and command-line operations. Secure File Transfer Protocols: Hands-on experience with SFTP and tools like SFG, NDM, and MFT using SSH encryption. Task Scheduling Tools: Experience with job scheduling platforms such as AutoSys, Control-M, or cron. Thank You For Considering Employment With Fiserv. Please Apply using your legal name Complete the step-by-step profile and attach your resume (either is acceptable, both are preferable). Our Commitment To Diversity And Inclusion Fiserv is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, age, disability, protected veteran status, or any other category protected by law. Note To Agencies Fiserv does not accept resume submissions from agencies outside of existing agreements. Please do not send resumes to Fiserv associates. Fiserv is not responsible for any fees associated with unsolicited resume submissions. Warning About Fake Job Posts Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from a Fiserv representative will come from a legitimate Fiserv email address.

Role Description Sr. Splunk SME/Enterprise Monitoring Engineer Splunk SME/Enterprise Monitoring Engineer 5+ years of experience in IT infrastructure, DevOps, or monitoring roles. 3+ years of hands-on experience with Splunk Enterprise as an admin, architect, or engineer. Experience designing and managing large-scale, multi-site Splunk deployments. Strong skills in SPL (Search Processing Language), dashboard design, and ing strategies. Familiarity with Linux systems, scripting (e.g., Bash, Python), and APIs. Experience with enterprise monitoring tools and integration with Splunk (e.g., AppDynamics, Dynatrace, Nagios, Zabbix, etc.). Understanding of logging, metrics, and tracing in modern environments (on-prem and cloud). Strong understanding of network protocols, system logs, and application telemetry. Serve as the SME for Splunk architecture, deployment, and configuration across the enterprise. Maintain and optimize Splunk infrastructure, including indexers, forwarders, search heads, and clusters. Develop and manage custom dashboards, s, saved searches, and visualizations. Implement and tune log ingestion pipelines using Splunk Universal Forwarders, HTTP Event Collector, and other data inputs. Ensure high availability, scalability, and performance of the Splunk environment. Creating dashboards, Reports, s, Advance Splunk Search, Visualization, log parsing and external table lookups Expertise with SPL (Search Processing Language ) and understanding of Splunk architecture, including configuration files. Wide Experience in monitoring and troubleshooting applications using tools like AppDynamics, Splunk, Grafana, Argos ,OTEL, etc. to build observability for large-scale microservice deployments. Creating dashboards for various applications to monitor health, network issues and configure s. Excellent problem-solving, triaging, and debugging skills in large-scale distributed systems Establishing and documenting run books and guidelines for using the multi-cloud infrastructure and microservices platform. Experience in optimized search queries using summary indexing. Solid knowledge and experience in monitoring the Splunk infrastructure. Develop a long-term strategy and roadmap for AI/ML tooling to support the AI capabilities across the Splunk portfolio. Diagnose and resolve network-related issues affecting CI/CD pipelines, debug DNS, firewall, proxy, and SSL/TLS problems, and use tools like tcpdump, curl, and netstat for proactive maintenance. Enterprise Monitoring & Observability Design and implement holistic enterprise monitoring solutions integrating Splunk with tools like AppDynamics, Dynatrace, Prometheus, Grafana, SolarWinds, or others. Collaborate with application, infrastructure, and security teams to define monitoring KPIs, SLAs, and thresholds. Build end-to-end visibility into application performance, system health, and user experience. Integrate Splunk with ITSM platforms (e.g., ServiceNow) for event and incident management automation. Operations, Troubleshooting & Optimization Perform data onboarding, parsing, and field extraction for structured and unstructured data sources. Support incident response and root cause analysis using Splunk for troubleshooting and forensics. Regularly audit and optimize search performance, data retention policies, and index lifecycle management. Create runbooks, documentation, and SOPs for Splunk and monitoring tool usage. Skills Splunk,Devops Tools,Bash,DEVOPS

Key Responsibilities: Splunk ITSI Implementation: Develop and configure IT Service Intelligence (ITSI) modules, including KPI creation, service trees, and notable event aggregation. SIEM Development: Design, implement, and optimize Splunk SIEM solutions for threat detection, security monitoring, and log analysis. Dashboard & Visualization: Create advanced dashboards, reports, and visualizations using Splunk SPL (Search Processing Language). Data Ingestion & Parsing: Develop data onboarding, parsing, and field extractions from various log sources, including cloud and on-prem infrastructure.KeywordsITSI,SIEM,SIEM Development,Splunk SPL,Splunk ITSI Implementation,Splunk*Mandatory Key SkillsITSI,SIEM,SIEM Development,Splunk SPL,Splunk ITSI Implementation,Splunk*

Key Responsibilities: Splunk ITSI Implementation: Develop and configure IT Service Intelligence (ITSI) modules, including KPI creation, service trees, and notable event aggregation. SIEM Development: Design, implement, and optimize Splunk SIEM solutions for threat detection, security monitoring, and log analysis. Dashboard & Visualization: Create advanced dashboards, reports, and visualizations using Splunk SPL (Search Processing Language). Data Ingestion & Parsing: Develop data onboarding, parsing, and field extractions from various log sources, including cloud and on-prem infrastructure. Mandatory Key SkillsITSI,SIEM,SIEM Development,Splunk SPL,Splunk ITSI Implementation,Splunk*

Key Responsibilities: Splunk ITSI Implementation: Develop and configure IT Service Intelligence (ITSI) modules, including KPI creation, service trees, and notable event aggregation. SIEM Development: Design, implement, and optimize Splunk SIEM solutions for threat detection, security monitoring, and log analysis. Dashboard & Visualization: Create advanced dashboards, reports, and visualizations using Splunk SPL (Search Processing Language). Data Ingestion & Parsing: Develop data onboarding, parsing, and field extractions from various log sources, including cloud and on-prem infrastructure. Mandatory Key SkillsSplunk ITSI Implementation,IT Service Intelligence,SIEM Development,Search Processing Language,Data Ingestion,Splunk*

Position: Special Educator – Behaviour Specialist Location: G.D. Goenka Public School, Jhansi, Uttar Pradesh About the Role G.D. Goenka Public School, Jhansi, established in 2024, carries forward a legacy of holistic education focused on creativity, character, and academic excellence As a Special Educator – Behaviour Specialist, you will be pivotal to the inclusion program, supporting students with diverse learning and behavioural needs through tailored interventions and collaboration. Qualifications & Credentials Educational Background: Master’s degree in Psychology, Special Education (e.g., M.Ed. in Special Education, M.A./M.Sc. in Child Psychology or analogous field) B.Ed. with a specialization or certification in Special Education from a recognized institution Registration with the Rehabilitation Council of India (RCI) (mandatory) Professional Experience: Minimum 5 Years of experience as a Special Educator or Behavior Specialist in a reputable school or inclusive education setting Certifications: Prior experience or coursework in Behaviour Management, Positive Behavioural Interventions and Supports (PBIS), or Applied Behavior Analysis (ABA) Board Compliance: CBSE-compliant qualifications and TET (Teacher Eligibility Test) or equivalent credentials, as per CBSE norms Key Responsibilities Conduct comprehensive behavioural assessments to identify individual student needs Develop, implement, and monitor Individualized Education Plans (IEPs) with behavioral objectives, collaborating with teachers, counsellors, and parents. Design and deliver behavioural interventions using evidence-based strategies (e.g., PBIS, ABA) Provide in-class coaching and support to subject teachers for classroom management and inclusive practices Maintain detailed progress data, analyze outcomes, and adjust intervention strategies as needed Conduct parent and staff workshops focusing on behavioural strategies and effective collaboration Participate in student welfare committees or inclusion teams to advocate for student needs Stay updated through regular professional development in special education and behavioural methodologies Desired Skills & Attributes Strong interpersonal and communication skills — to liaise effectively with students, families, and staff Empathy and patience — attuned to the diverse emotional needs of students Data-driven decision-making — able to monitor and analyze behavior progress objectively Team orientation — skilled in working across departments, inclusive teaching culture, and parental engagement Creative problem-solving — ability to adapt and personalize strategies for individual student success Commitment to professional growth — open to ongoing training and development Why Join G.D. Goenka Jhansi? Be part of a modern, high‑standards institution known for an inclusive and nurturing environment Engage in clarified career pathways, with opportunities for specialization and professional development Contribute to a progressive inclusion model, supporting behavioural and emotional well-being alongside academic learning Summary Table | Category | Details | | Education | M.Ed. or M.A./M.Sc. in Special Education or Psychology; B.Ed. in Spl. Edu.; RCI Registered | | Experience | Minimum 5 years in inclusive education or behavior support roles | | Core Skills | Behavioural assessment, IEP creation, PBIS/ABA, data-driven strategies | | Key Traits | Empathy, communication, collaboration, creativity, continuous learning | | Compliance | CBSE norms, TET or equivalent, RCI registration | I hope this version aligns with your expectations! Feel free to ask if you’d like modifications—like adding salary range, reporting structure, or more on school culture. Job Type: Full-time Pay: ₹20,000.00 - ₹30,000.00 per month Work Location: In person

Job Summary Long Description Responsible for execution and follow up of Parts Requests for Part Orders, Quotes, Equipment Repairs (In & Out of warranty), and Advance Exchanges from the Help Desk and Service Offices throughout the country. Essential Duties And Responsibilities Initiate vendor repair (In & Out of warranty) RMA’s, coordinate returns Provide updates to appropriate technician and maintain Parts Request notes Create and send FedEx and/or UPS labels as required for items to be shipped which can include shipments to vendors for repair, shipment of spares, return shipments as needed. Schedule follow-up tasks as required to insure shipments and repairs are performed in an expedited manner Follow up with vendors as required for status of parts/equipment orders, tracking information Arrange for advance replacements from vendors, including RMA paperwork Resolve shipping issues. (Lost packages, Damaged, miss/double ship, routing, adverse weather conditions) Provide pricing for T&M quotes (repairs, parts, replacement equipment, labor, shipping) Create Sales Orders and Purchase Order in Sage and transmit then to the vendor Manage all daily FedEx and UPS deliveries Handle all AVISPL RMA request return for credit, either Return to vendor (negotiate restocking fees with mfg) and/or Return to Warehouse Manage Smart Spare parts inventory Manage Varitronics shipping ATA cases inventory. Process “internal paperwork” RMA requests for Sales Order Price changes, PO Cost changes, Customer ID Changes, SN# maintenance. Invoicing “ship completing” AVISPL completed RMA paperwork in Sage Scanning of completed RMA packets and other admin duties Manage, track and monitor spare parts inventory Other duties assigned as needed Skills And Abilities Ability to balance multiple tasks with changing priorities Ability to work and think independently and ensuring to meet deadlines Must have clear and professional communication skills (written and oral) both internally and externally Effective communication and interaction with employees, clients, and colleagues and the ability to work effectively with all levels of the organization Excellent data entry and organizational skills Basic PC skills and working knowledge of Office Suite (Excel, Word) Demonstrated customer service focus and client communication skills Education And/or Experience Minimum high school diploma or equivalent Minimum 1-2 years of administrative and shipping experience Experience managing an inventory warehouse preferred Demonstrated working knowledge of SalesForce and Sage Experience utilizing FedEx and UPS shipping software Working Environment The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. This job operates in a professional office environment. This role uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines. The work environment is generally moderate in noise (inter-office conversations and computers/printers). Physical Requirements The physical demands of this position are those that are necessary to meet the responsibilities and essential functions of this position. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions. This position regularly requires employees to sit, walk, and stand; talk or hear, both in person and by telephone; use hands repetitively to finger, handle, feel or operate standard office equipment Direct Reports This position does not have any direct reports Work Hours AVI-SPL reserves the right to alter work hours and work location as deems necessary AVI-SPL is an Equal Opportunity Employer/AA/Disabled/Veteran Protected VEVRAA Federal Contractor

Designation: Assistant Manager Experience: 5 to 10 years Location: Chennai, Tamil Nadu, India (CHN) Job Description: Splunk Data Governance & Engineering Specialist Key Responsibilities: Data Source Inventory & Analysis Build and maintain a master inventory of Splunk log sources (owner, ingestion path, volume, use case, retention). Audit ingestion vs. usage; identify redundant/noisy data sources. Flag low-value data for removal, archiving, or downsampling. Governance Framework & Standards Define ownership, classification, and schema standards across all Splunk sources. Enforce consistent retention and lifecycle management policies. Normalize high-value log sources to OCSF/ECS/Splunk CIM standards. Apply tagging and metadata for sensitivity, retention, and business use cases. Ingestion & Transformation Controls Filter noisy/heartbeat events before ingest. Apply field renaming, enrichment, and transformation pipelines. Ensure metadata (owner, system, retention) is automatically attached at ingest. Data Quality & Monitoring Build dashboards for field completeness, timestamp accuracy, and event health. Automate enforcement of retention checks and ingestion anomaly detection. Run periodic governance reviews to ensure sources stay aligned with standards. Operational Impact Improve Splunk query performance and detection accuracy. Reduce storage costs by enforcing governance and pruning unused data. Establish sustainable governance through automation and oversight. Responsibilities: Splunk Core Expertise Strong hands-on experience with Splunk Enterprise and Splunk Enterprise Security (ES). Proficiency in SPL for advanced queries, performance tuning, and dashboards. Knowledge of indexer/search head clustering, forwarder management, data models, and knowledge objects (macros, lookups, field extractions). Experience with Splunk CIM and mapping log sources to normalized schemas. Familiarity with data models, accelerations, summary indexing, and performance tuning at scale. Data Governance & Security Experience defining log source ownership, classification, and retention frameworks. Strong understanding of RBAC in Splunk (roles, capabilities, scoping by indexes and apps). Ability to create governance policies for onboarding, lifecycle management, and access control Data Engineering & Automation Experience with data ingestion and parsing in Splunk (forwarders, HEC, API-based inputs). Strong skills in log transformation/enrichment (field parsing, timestamp correction, renaming, metadata tagging). Scripting in Python, Bash, or PowerShell for automation of Splunk admin and governance tasks. Desired Background 4–7 years of Splunk engineering/administration experience, ideally in large-scale enterprise security environments. Prior experience cleaning up data sprawl in SIEM or Splunk environments. Strong analytical and problem-solving mindset; comfortable in fast-paced, dynamic settings. Bonus: Security knowledge (SIEM/UEBA use cases, detection tuning, MITRE ATT&CK alignment). Skills: 5 to 10 years in the Splunk Enterprise domain Splunk Enterprise and Splunk Enterprise Security, Security knowledge (SIEM/UEBA use cases, detection tuning, MITRE ATT&CK alignment). We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, colour, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. Job Snapshot Updated Date 12-09-2025 Job ID J_4112 Location Chennai, Tamil Nadu, India Employee Type Permanent

About Company Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way youd like, where youll be supported and inspired bya collaborative community of colleagues around the world, and where youll be able to reimagine whats possible. Join us and help the worlds leading organizationsunlock the value of technology and build a more sustainable, more inclusive world. Job TitleSOC L2 Total Exp- 4 to 7 Years Location- Bangalore Your Role SOC Analyst Key Skills & Experience Experience 3+ years in SOC analysis; prior network/system admin experience is a strong plus. Technical Expertise Strong in Active Directory, Kerberos, ADCS, Windows security logs, network technologies, and cloud security (Azure & O365). Tool Proficiency Hands-on with Azure Sentinel, Microsoft KQL, and Microsoft E5 Security Stack (Defender suite); SIEM & EDR mandatory, NDR a plus. Detection & Analysis Skilled in writing detection queries (SPL, EKQL, MS-KQL, ArcSight), interpreting PCAPs, regex, malware/phishing analysis, and threat actor TTPs (MITRE ATT&CK). Threat Response Capable of creating detection hypotheses, tuning rules, and improving playbooks for effective incident response. Your Profile Incident Response Analyze and document security incidents, escalate when needed, and ensure smooth handover to L3 teams. Threat Detection Perform research and data analysis to identify threats and coordinate remediation efforts. Stakeholder Support Assist IT teams and end users in understanding security issues and applying mitigation strategies. Threat Hunting Conduct deep dives beyond routine incidents and propose corrective actions. Cyber Intelligence Leverage threat intelligence to suggest detection use cases and improve security posture. What Youll Love About Working Here You can shape yourcareerwith us. We offer a range of career paths and internal opportunities within Capgemini group. You will also get personalized career guidance from our leaders.You will get comprehensive wellness benefits including health checks, telemedicine, insurance with top-ups, elder care, partner coverage or new parent support via flexible work.At Capgemini, you can work on cutting-edge projectsin tech and engineering with industry leaders or createsolutions to overcome societal and environmental challenges.

Work collaboratively with application development, data protection, information security, and risk management teams to understand and implement data security and management solutions. Continuously improve security & observability telemetry services based on input from a diverse network of internal and external stakeholders, and technology teams as well as the IT industry at large. Data Management: Define and manage data models, schemas, metadata, and security rules. Design, create, deploy, and manage databases and data structures on premise and in the cloud to fulfill business requirements. Threat Analysis: Identify and mitigate potential security risks in the organization's data architecture. Compliance: Ensure compliance with data privacy laws and regulations. Risk Management: Conduct risk assessments and take appropriate actions to mitigate the risks associated with data security. Training and Development: Train and educate stakeholders about our data Collaboration: Collaborate with other IT team members, stakeholders, and executives to ensure the security of data architectures. Requirements Minimum 6+ years of Data Ingestion, Integration, ETL, or security engineering experience with large scale implementations distributed globally Extensive knowledge of a globally distributed environment across multiple platforms such as AWS, Azure and GCP Data-driven mindset Strong understanding of Data Management or Data Engineering Strong grounding in data analysis and related processes Experienced in Agile methods, experience in Atlassian stack (i.e., JIRA) or related tools Ability to Develop roadmaps and the underlying strategies for the data centric products and services Experience with standard monitoring frameworks and observability products Experience with hybrid environment data sources, data collectors and instrumentation Expertise in the use SIEM solutions for basic and advanced detection methods, including cloud-based data sources Experience with security monitoring & observability solutions such as Splunk, Sumo, Datadog, New Relic, AppDynamics Experience of working with cloud and data security in a DevSecOps/IRE and agile working environments. Expertise in at least one scripting language (PowerShell, Python, Bash) Experience in container/container orchestration technologies - Docker and Kubernetes Experience w/systems configuration orchestration tools - Ansible or Terraform Understanding of infrastructure as a code and concepts Related security certifications (e.g. CISSP, CCSP, SABSA, ITIL etc.). Familiarity and experience with the Splunk SPL query language. 3+ years familiarity and experience with Linux / Ubuntu / Mac systems Experience in creating dashboards, queries, alerts in Splunk, Data Dog, Sumo Experience in troubleshooting issues with Splunk connectivity including, networking, server (windows and Linux), and application tiers.

Job requisition ID :: 88461 Date: Sep 10, 2025 Location: Delhi Designation: Associate Director Entity: Deloitte Touche Tohmatsu India LLP Your potential, unleashed. India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks Work you’ll do Splunk Engineer role is to Administering customer’s Splunk Enterprise Security (SIEM) end to end environment. This includes use case development, log source onboarding, custom parser creation, troubleshoot Splunk issues, upgrading the Splunk environment. The key skills required are as follows: Demonstrates proven expertise as in administering Splunk Enterprise Security (SIEM) environment. Should have the following skills: Overall experience of at least 10+ years as SIEM Splunk Enterprise Security Splunk Certified professional having at least Splunk Admin user certification level preferrable. Good experience in Splunk administration and troubleshooting Experience in integration of Splunk with log sources of different types including but not limited to security devices, network devices, web applications, custom applications and so on. Experience in tuning and troubleshooting Splunk premium apps like Enterprise Security, Phantom and UBA. Comfortable in writing regular expression to extract fields from custom log sources. Expertise in developing custom use cases using Splunk search language to correlate and alert on logs from multiple sources. Hands-on experience in creating dashboard and reports using SPL queries and XML. Good knowledge of information security and IT operations domain. Proficiency in client and server operating systems including Linux and Windows General networking and system troubleshooting skills (firewalls, routing, NAT, etc.) Ability to autonomously prioritize and successfully deliver across a portfolio of projects Good consulting skills with ability to manage client expectations Education: B.Tech/BE / B.Sc / BCA / Master’s degree in Computer Science, Engineering- Full time Your role as Associate Director We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, Associate Director across our organization must strive to be: Inspiring - Leading with integrity to build inclusion and motivation Committed to creating purpose - Creating a sense of vision and purpose Agile - Achieving high-quality results through collaboration and Team unity Skilled at building diverse capability - Developing diverse capabilities for the future Persuasive / Influencing - Persuading and influencing stakeholders Collaborating - Partnering to build new solutions Delivering value - Showing commercial acumen Committed to expanding business - Leveraging new business opportunities Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization Effective communication – Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction fo the success of engagement(s) Managing change - Responding to changing environment with resilience Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte Empathetic leadership and inclusivity - creating a safe and thriving environment where everyone's valued for who they are, use empathy to understand others to adapt our behaviours and attitudes to become more inclusive. How you’ll grow Connect for impact Our exceptional team of professionals across the globe are solving some of the world’s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report. Empower to lead You can be a leader irrespective of your career level. Our colleagues are characterised by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership. Inclusion for all At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters. Drive your career At Deloitte, you are encouraged to take ownership of your career. We recognise there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte. Everyone’s welcome… entrust your happiness to us Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here’s a glimpse of things that are in store for you. Interview tips We want job seekers exploring opportunities at Deloitte to feel prepared, confident and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organisation and the business area you’re applying to. Check out recruiting tips from Deloitte professionals. *Caution against fraudulent job offers*: We would like to advise career aspirants to exercise caution against fraudulent job offers or unscrupulous practices. At Deloitte, ethics and integrity are fundamental and not negotiable. We do not charge any fee or seek any deposits, advance, or money from any career aspirant in relation to our recruitment process. We have not authorized any party or person to collect any money from career aspirants in any form whatsoever for promises of getting jobs in Deloitte or for being considered against roles in Deloitte. We follow a professional recruitment process, provide a fair opportunity to eligible applicants and consider candidates only on merit. No one other than an authorized official of Deloitte is permitted to offer or confirm any job offer from Deloitte. We advise career aspirants to exercise caution. In this regard, you may refer to a more detailed advisory given on our website at: https://www2.deloitte.com/in/en/careers/advisory-for-career-aspirants.html?icid=wn_

Bhubaneswar, India Job Category : Security Research Posting Date : 01 January 2024 Job Type : Engineering Years of Experience : 5-10 Does this position require a security clearance? No Applicants are required to read,write and speak the following languages Hindi/English Additional Info : Job Description As an esteemed Security Research Engineer with expertise in offensive methodologies and substantiating exploitation, your indispensable role within our security team cannot be understated. Your principal task entails spearheading team exercises to evaluate and enhance our organizational defenses. Moreover, you will partake in team exercises, working alongside the team to strengthen detection prowess and simulate intricate attack scenarios. As part of your role, you will have the responsibility of overseeing and implementing an efficient security strategy, along with security programs and services that are both effective and reliable. Responsibilities Ensure that you remain ahead in the industry by consistently enhancing your understanding of emerging threats, up-to-date attack techniques, and well-documented vulnerabilities. Conduct diverse exercises, including internal and external penetration tests and lateral movement assessments. Evaluate and circumvent security systems to uncover vulnerabilities and propose enhancements. Improve tools for managing configuration or attack paths. Simulate advanced methods and detect different approaches to Tactics, Techniques, and Procedures (TTPs) that could remain unnoticed. Create comprehensive reports that thoroughly document the discoveries, approaches, and applicable suggestions derived from Team engagements. Construct concise and persuasive reports that proficiently convey identified weaknesses, potential attack paths, and potential consequences to relevant parties. Guarantee that reports offer pragmatic advice for rectifying vulnerabilities and improving overall security. Qualifications Bachelor's degree in Computer Science or certifications in Offensive Security such as OSCP, OSCE, or similar qualifications. Minimum of 4 years of experience in a similar role, showcasing a strong background in offensive security and penetration testing. Required Skills Proficient in writing IPS/SIEM detection logic using tools like Splunk or Anvilogic. Hands-on experience in blue team activities with SPL, KQL, YARA-L, and SIGMA. Skilled in crafting detection logic for SIEM or Data Lakes, including Splunk, Anvilogic, etc. Excellent English communication skills, both written and verbal, to effectively communicate complex technical concepts to technical and non-technical stakeholders. Capable of sharing knowledge effectively to educate others. Strong problem-solving abilities and a creative mindset for identifying attack vectors and developing innovative strategies. Disclaimer Hiring Range: from 1000000 to 2250000 per annum. May be eligible for bonus and equity. We maintain broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect Nirmalya’s differing products, industries and lines of business. Candidates are typically placed into the range based on the preceding factors as well as internal peer equity. About Us Nirmalya's career has the potential to encompass various industries, roles, countries, and cultures, allowing for growth in novel positions and driving innovation, while effectively balancing work and personal life. Nirmalya has achieved success over the years by embracing change, fostering innovation, and consistently upholding ethical principles, thereby delivering exceptional results for leading companies across multiple industries.To foster and support the talents responsible for such accomplishments, our dedication lies in cultivating an inclusive culture that appreciates and embraces diverse insights and perspectives. We strive to create a workforce that inspires thought leadership and sparks innovation, ensuring a thriving environment for all. Nirmalya Employee Benefits are meticulously designed to prioritize equality, reliability, and affordability. Our comprehensive package encompasses essential features such as Medical and Life Insurance, while also granting access to Retirement Planning and more. Additionally, we actively encourage our employees to actively contribute to the well-being of the communities where we operate. We firmly believe that fostering diversity and inclusion lays the foundation for innovation. To shape a brighter tomorrow, we seek talent from diverse backgrounds, embracing a range of perspectives and abilities. We are committed to providing reasonable accommodations to individuals with disabilities throughout the job application, interview, and prospective role stages, thereby enabling them to effectively perform crucial job functions. Our dedication lies in fostering an inclusive workforce that enables every individual to thrive. We believe in the power of diverse perspectives and value every voice, as it is this harmony that propels us to surpass previous achievements. As an Equal Employment Opportunity Employer, Nirmalya ensures that all applicants are treated fairly and without discrimination. We promote equality regardless of race, color, religion, national origin, gender identity, disability, protected veterans’ status, or any other characteristic protected by law. Additionally, Oracle complies with applicable legislation by considering qualified applicants with arrest and conviction records for employment opportunities. Join our team where diversity is celebrated, and everyone's unique contribution is respected. Together, we embrace innovation and strive towards excellence – a testament to our commitment to fostering an inclusive and thriving workplace.

Background Positka is a Singapore-based boutique consulting firm with blue-chip multinational clients. Positka provides a broad range of outcome-based offerings across cybersecurity and IT operations. Positka is looking for highly motivated and exceptionally driven people to join their fast-growing technology practice. This individual will work closely with our customers/partners to provide technical assistance, operational maintenance, and project delivery. This position is an integral part of the long-term plan to grow relationships with our customers. The efforts put forth by this individual will directly impact the long-term success of the relationship. To succeed in this role, this individual must have strong technical leadership, problem-solving abilities, and the passion and energy to work in a fast-paced, customer-centric, fun environment. Positka is committed to investing in best-in-class training/certifications and providing opportunities to work on cutting-edge projects. Role Description The role of an Engineer in Positka is pivotal in driving value for the firm. A person in this role will work independently with very senior clients and drive client satisfaction in a high-expectation environment. Splunk engineers at Positka work on complex projects (clustered, multi-TB) and design Splunk-based solutions for cloud security, IoT security, AIOps, and Observability. They get exposed to solving security problems in a variety of industry domains from banking, telecom, retail, heavy engineering, defense & space. Specifically: - Provide engineering and administration in implementing/supporting complex and large Splunk environments consisting of multi-node clustered deployments - Convert the requirements into specific deliverables and credible plans - Drive delivery of outcomes in collaboration with multiple stakeholders - Develop a deep understanding of the Splunk products - Ensure various application data sources can be integrated successfully into the overall application/system with clear, robust, and well-tested interfaces - Creating new innovative Splunk apps for solving industry-wide pain points - Identify opportunities for business development and extending client relationships As a pivotal member of our team, you will contribute to Splunk deployment projects, working closely with our clients to architect, design, and implement tailored solutions leveraging Splunk's powerful capabilities. You will participate in consulting engagements, providing strategic guidance and ultimately shaping their success through innovative and efficient use of Splunk solutions. Additionally, you'll have access to ongoing learning opportunities and certifications, enabling you to stay at the forefront of Splunk technology while furthering your career in consultancy and solution design. Experience, skills, education - 3-5 years of experience in Splunk (exposure to ES, or ITSI would be an advantage) - Good understanding of IT infrastructure and troubleshooting (including network, Linux, Windows, storage, scripting, etc.) - Experience handling multiple data sources to import data, parse/clean, and index as required - Experience with Splunk knowledge objects (apps, data models, pivots, alerts, etc.) - Strong knowledge of basic and advanced Splunk architecture (including clustering, HA, DR, etc.) - Well-versed in Splunk SPL queries, Reports, and Dashboards. Proven ability to design and customize complex search queries, develop visualizations, and optimize their performance - Strong understanding of regular expressions (Regex) - Familiarity with at least any one of the scripting languages (JavaScript, Python, Shell, Unix) - Familiarity with at least any one of the Web technologies (HTML, HTML5, XML, CSS) - Splunk Admin or higher certifications would be a significant advantage - Excellent (written and verbal) communication skills and interpersonal skills are mandatory Location - The role location is Chennai - Ability and willingness to travel will be essential Remuneration: Competitive to the market. Contact: regina@positka.com

Splunk Developer Background Positka FSI Pte (Positka) is a Singapore based boutique consulting firm with blue chip multinational clients. Positka provides execution focused high value advisory to clients in Business Transformation, Program Management, Information Technology, Big data Analytics and Cybersecurity. Positka are looking for highly motivated and exceptionally driven people to join their fast-growing business growth and marketing team. On offer is an opportunity to be part of an entrepreneurial journey, to work with the best professionals in the world and to achieve outstanding financial rewards. Role Description If you are passionate about data, analytics, and building enterprise-grade solutions using Splunk, we would love to hear from you. We are seeking a Splunk Developer with 3–5 years of experience who will be responsible for designing, implementing, and maintaining Splunk-based solutions to collect, analyze, and visualize machine-generated data for operational, business, and security use cases. You will work closely with stakeholders, architects, and cross-functional teams to design ingestion pipelines, create advanced dashboards and reports, automate workflows, and optimize Splunk deployments for scalability, security, and performance. Candidates will be expected to: -Collaborate with stakeholders to understand data requirements, use cases, and objectives for Splunk deployments. -Design and implement data ingestion pipelines including data collection, parsing, field extraction, normalization, and indexing. -Develop and optimize SPL queries, reports, dashboards, correlation searches, alerts, and frontend visualizations to extract actionable insights. -Build and maintain data models, lookups, macros, event types, and tags to support analytics and reporting. -Develop automated solutions and integrations using Python for data manipulation, onboarding, and Splunk API interactions. -Design and implement user-friendly dashboards, panels, and visualizations using Splunk, HTML, CSS, and JavaScript. -Design, Implement and manage Splunk apps, add-ons, forwarders, HEC inputs, and custom app development to support business analytics and monitoring needs. -Troubleshoot Splunk issues related to data onboarding, parsing, indexing, and search performance. -Work with IT Operations and Security teams to develop log analysis, monitoring, and incident response solutions in Splunk. -Ensure compliance, security, and data governance by configuring role-based access control, data encryption, and audit trails. -Provide end-user support, knowledge transfer, and training to teams on Splunk usage. -Stay updated with new Splunk features, advanced SPL techniques, scripting integrations, and industry best practices, and recommend improvements. Skills and Education: Experience: 3–5 years of experience working as a Splunk Developer/Engineer/Administrator. -Proficiency in SPL for building complex queries, alerts, dashboards, and advanced analytics use cases. -Hands-on experience with Splunk administration (indexing, props.conf, transforms.conf, inputs/outputs, forwarder deployment). -Strong understanding of log parsing, field extractions, and regex. -Hands-on experience in Splunk app development and SPL (Search Processing Language) queries. -Proficiency in Python for scripting and automation. -Solid understanding of at least one front-end technologies (JavaScript, HTML, CSS). -Knowledge of Splunk architecture, data ingestion, and integration. -Experience with Linux/Unix administration and scripting (Bash, ksh, Python, or PowerShell) -Familiarity with databases (Oracle, SQL, DB Connect) is preferred. -Experience in IT infrastructure environments (servers, networking, monitoring tools). -Strong analytical, troubleshooting, and communication skills. Preferred: -Experience with REST API integrations within Splunk. -Familiarity with agile software development and DevOps practices. -Familiarity with ITIL process for ticket management -Splunk certification(s). Location The role is based out of Chennai (India). Contact: regina@positka.com

About Company Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way you'd like, where you'll be supported and inspired by a collaborative community of colleagues around the world, and where you'll be able to reimagine what's possible. Join us and help the world's leading organizations unlock the value of technology and build a more sustainable, more inclusive world. Job Title: SOC L2 Total Exp- 4 to 7 Years Location- Bangalore Your Role SOC Analyst - Key Skills & Experience Experience : 3+ years in SOC analysis prior network/system admin experience is a strong plus. Technical Expertise : Strong in Active Directory, Kerberos, ADCS, Windows security logs, network technologies, and cloud security (Azure & O365). Tool Proficiency : Hands-on with Azure Sentinel, Microsoft KQL, and Microsoft E5 Security Stack (Defender suite) SIEM & EDR mandatory, NDR a plus. Detection & Analysis : Skilled in writing detection queries (SPL, EKQL, MS-KQL, ArcSight), interpreting PCAPs, regex, malware/phishing analysis, and threat actor TTPs (MITRE ATT&CK). Threat Response : Capable of creating detection hypotheses, tuning rules, and improving playbooks for effective incident response. Your Profile Incident Response : Analyze and document security incidents, escalate when needed, and ensure smooth handover to L3 teams. Threat Detection : Perform research and data analysis to identify threats and coordinate remediation efforts. Stakeholder Support : Assist IT teams and end users in understanding security issues and applying mitigation strategies. Threat Hunting : Conduct deep dives beyond routine incidents and propose corrective actions. Cyber Intelligence : Leverage threat intelligence to suggest detection use cases and improve security posture. What You'll Love About Working Here You can shape yourwith us. We offer a range of career paths and internal opportunities within Capgemini group. You will also get personalized career guidance from our leaders.You will get comprehensive wellness benefits including health checks, telemedicine, insurance with top-ups, elder care, partner coverage or new parent support via flexible work.At Capgemini, you can work on in tech and engineering with industry leaders or create to overcome societal and environmental challenges.

Bhubaneswar, India Job Category : Security Research Posting Date : 01 January 2024 Job Type : Engineering Years of Experience : 5-10 Does this position require a security clearance? No Applicants are required to read,write and speak the following languages Hindi/English Additional Info : Job Description As an esteemed Security Research Engineer with expertise in offensive methodologies and substantiating exploitation, your indispensable role within our security team cannot be understated. Your principal task entails spearheading team exercises to evaluate and enhance our organizational defenses. Moreover, you will partake in team exercises, working alongside the team to strengthen detection prowess and simulate intricate attack scenarios. As part of your role, you will have the responsibility of overseeing and implementing an efficient security strategy, along with security programs and services that are both effective and reliable. Responsibilities Ensure that you remain ahead in the industry by consistently enhancing your understanding of emerging threats, up-to-date attack techniques, and well-documented vulnerabilities. Conduct diverse exercises, including internal and external penetration tests and lateral movement assessments. Evaluate and circumvent security systems to uncover vulnerabilities and propose enhancements. Improve tools for managing configuration or attack paths. Simulate advanced methods and detect different approaches to Tactics, Techniques, and Procedures (TTPs) that could remain unnoticed. Create comprehensive reports that thoroughly document the discoveries, approaches, and applicable suggestions derived from Team engagements. Construct concise and persuasive reports that proficiently convey identified weaknesses, potential attack paths, and potential consequences to relevant parties. Guarantee that reports offer pragmatic advice for rectifying vulnerabilities and improving overall security. Qualifications Bachelor's degree in Computer Science or certifications in Offensive Security such as OSCP, OSCE, or similar qualifications. Minimum of 4 years of experience in a similar role, showcasing a strong background in offensive security and penetration testing. Required Skills Proficient in writing IPS/SIEM detection logic using tools like Splunk or Anvilogic. Hands-on experience in blue team activities with SPL, KQL, YARA-L, and SIGMA. Skilled in crafting detection logic for SIEM or Data Lakes, including Splunk, Anvilogic, etc. Excellent English communication skills, both written and verbal, to effectively communicate complex technical concepts to technical and non-technical stakeholders. Capable of sharing knowledge effectively to educate others. Strong problem-solving abilities and a creative mindset for identifying attack vectors and developing innovative strategies. Disclaimer Hiring Range: from 1000000 to 2250000 per annum. May be eligible for bonus and equity. We maintain broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect Nirmalya’s differing products, industries and lines of business. Candidates are typically placed into the range based on the preceding factors as well as internal peer equity. About Us Nirmalya's career has the potential to encompass various industries, roles, countries, and cultures, allowing for growth in novel positions and driving innovation, while effectively balancing work and personal life. Nirmalya has achieved success over the years by embracing change, fostering innovation, and consistently upholding ethical principles, thereby delivering exceptional results for leading companies across multiple industries.To foster and support the talents responsible for such accomplishments, our dedication lies in cultivating an inclusive culture that appreciates and embraces diverse insights and perspectives. We strive to create a workforce that inspires thought leadership and sparks innovation, ensuring a thriving environment for all. Nirmalya Employee Benefits are meticulously designed to prioritize equality, reliability, and affordability. Our comprehensive package encompasses essential features such as Medical and Life Insurance, while also granting access to Retirement Planning and more. Additionally, we actively encourage our employees to actively contribute to the well-being of the communities where we operate. We firmly believe that fostering diversity and inclusion lays the foundation for innovation. To shape a brighter tomorrow, we seek talent from diverse backgrounds, embracing a range of perspectives and abilities. We are committed to providing reasonable accommodations to individuals with disabilities throughout the job application, interview, and prospective role stages, thereby enabling them to effectively perform crucial job functions. Our dedication lies in fostering an inclusive workforce that enables every individual to thrive. We believe in the power of diverse perspectives and value every voice, as it is this harmony that propels us to surpass previous achievements. As an Equal Employment Opportunity Employer, Nirmalya ensures that all applicants are treated fairly and without discrimination. We promote equality regardless of race, color, religion, national origin, gender identity, disability, protected veterans’ status, or any other characteristic protected by law. Additionally, Oracle complies with applicable legislation by considering qualified applicants with arrest and conviction records for employment opportunities. Join our team where diversity is celebrated, and everyone's unique contribution is respected. Together, we embrace innovation and strive towards excellence – a testament to our commitment to fostering an inclusive and thriving workplace.

Crocus is hiring for a Role Own low-level firmware on STMicro MCUs and Linux kernel drivers. You’ll write bare‑metal C/C++ for STM32/STM8, develop/extend Linux device drivers for board peripherals, analyze schematics, and build small Qt desktop tools for test/diagnostics. Responsibilities Bare‑metal STM32/STM8 firmware (startup/linker, clock & power, pinmux, ISRs, timers/PWM, ADC/DAC, DMA). Linux kernel driver development: platform/char/tty drivers, SPI/I²C/UART/RS485/CAN, GPIO/IRQ, DMAengine, Device Tree (DTS/overlays), sysfs/debugfs hooks. Board bring‑up & HW–SW debug with ST‑LINK/SWD, GDB, oscilloscope & logic analyzer; root‑cause timing/signal issues. Implement bootloaders & firmware update paths (UART/USB/CAN/OTA as applicable). Build Qt (Widgets/QSerialPort/QThread) utilities for production test, logging, and field diagnostics. Schematic analysis: review power/clock/reset trees, transceiver bias/termination, level shifting, EMI/ESD paths; propose fixes. Write tests, docs, release notes; contribute to code reviews and CI. Must‑have Skills (all required) 2–3 years commercial embedded experience. Strong C for MCU (register‑level) and C for Linux kernel (kernel style, modules, locking/IRQs, workqueues). STM32 toolchain: STM32CubeMX, HAL/LL (or SPL legacy), and at least two IDEs (STM32CubeIDE/Keil/IAR/PlatformIO). Peripheral drivers with DMA: UART/SPI/I²C/Timers/ADC + one field bus (RS485/CAN). Linux driver expertise covering: Serial/tty (UART/RS485), SPI/I²C client drivers with regmap, CAN (SocketCAN) bring‑up, basic USB CDC device; Device Tree authoring, sysfs/debugfs, udev integration, dkms/out‑of‑tree module flow; cross‑compile & board bring‑up (toolchains, initramfs; Buildroot/Yocto basics). Protocols & stacks: Modbus RTU/TCP, TCP/UDP sockets, framing, timeouts, error handling (CRC/RTU timing). FreeRTOS fundamentals (tasks/queues/ISRs, tickless/low‑power) even if projects are bare‑metal first. Qt basics for test apps (port selection, read/write, threading, simple plotting/logging). Coding standards & quality: MISRA‑C:2012, CERT‑C, static analysis (cppcheck/clang‑tidy/PC‑lint), unit/integration tests, CI (GitHub/GitLab). Schematic reading and measurement‑driven debugging (scope/LA), including terminations/biasing and crystal/PLL checks. Solid Git workflow; CMake/Make; basic Python for test automation. Qualifications B.E./B.Tech/M.Tech (ECE/EEE/CSE) or equivalent practical experience. Shipped at least one STMicro‑based product from bring‑up to field and delivered at least one Linux driver on hardware. Engineering Toolchain (IDE, Build, CI) STM32CubeIDE/Keil/IAR • CubeMX • ST‑LINK/J‑Link • GCC/Clang cross‑toolchains • Buildroot/Yocto (basic) • Git • CMake/Make • Python • Qt Desktop • Oscilloscope & Logic Analyzer. Location: Bangalore • Work mode: Onsite only • Team: Embedded R&D • Type: Full-time Interested candidates kindly share your updated CV at jobs@crocustech.net Job Types: Full-time, Permanent Pay: ₹40,000.00 - ₹55,000.00 per month Benefits: Health insurance Provident Fund Ability to commute/relocate: HSR Layout, Bengaluru, Karnataka: Reliably commute or planning to relocate before starting work (Required) Work Location: In person

Job requisition ID :: 88461 Date: Sep 10, 2025 Location: Delhi Designation: Associate Director Entity: Deloitte Touche Tohmatsu India LLP Your potential, unleashed. India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks Work you’ll do Splunk Engineer role is to Administering customer’s Splunk Enterprise Security (SIEM) end to end environment. This includes use case development, log source onboarding, custom parser creation, troubleshoot Splunk issues, upgrading the Splunk environment. The key skills required are as follows: Demonstrates proven expertise as in administering Splunk Enterprise Security (SIEM) environment. Should have the following skills: Overall experience of at least 10+ years as SIEM Splunk Enterprise Security Splunk Certified professional having at least Splunk Admin user certification level preferrable. Good experience in Splunk administration and troubleshooting Experience in integration of Splunk with log sources of different types including but not limited to security devices, network devices, web applications, custom applications and so on. Experience in tuning and troubleshooting Splunk premium apps like Enterprise Security, Phantom and UBA. Comfortable in writing regular expression to extract fields from custom log sources. Expertise in developing custom use cases using Splunk search language to correlate and alert on logs from multiple sources. Hands-on experience in creating dashboard and reports using SPL queries and XML. Good knowledge of information security and IT operations domain. Proficiency in client and server operating systems including Linux and Windows General networking and system troubleshooting skills (firewalls, routing, NAT, etc.) Ability to autonomously prioritize and successfully deliver across a portfolio of projects Good consulting skills with ability to manage client expectations Education: B.Tech/BE / B.Sc / BCA / Master’s degree in Computer Science, Engineering- Full time Your role as Associate Director We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, Associate Director across our organization must strive to be: Inspiring - Leading with integrity to build inclusion and motivation Committed to creating purpose - Creating a sense of vision and purpose Agile - Achieving high-quality results through collaboration and Team unity Skilled at building diverse capability - Developing diverse capabilities for the future Persuasive / Influencing - Persuading and influencing stakeholders Collaborating - Partnering to build new solutions Delivering value - Showing commercial acumen Committed to expanding business - Leveraging new business opportunities Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization Effective communication – Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction fo the success of engagement(s) Managing change - Responding to changing environment with resilience Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte Empathetic leadership and inclusivity - creating a safe and thriving environment where everyone's valued for who they are, use empathy to understand others to adapt our behaviours and attitudes to become more inclusive. How you’ll grow Connect for impact Our exceptional team of professionals across the globe are solving some of the world’s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report. Empower to lead You can be a leader irrespective of your career level. Our colleagues are characterised by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership. Inclusion for all At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters. Drive your career At Deloitte, you are encouraged to take ownership of your career. We recognise there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte. Everyone’s welcome… entrust your happiness to us Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here’s a glimpse of things that are in store for you. Interview tips We want job seekers exploring opportunities at Deloitte to feel prepared, confident and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organisation and the business area you’re applying to. Check out recruiting tips from Deloitte professionals. *Caution against fraudulent job offers*: We would like to advise career aspirants to exercise caution against fraudulent job offers or unscrupulous practices. At Deloitte, ethics and integrity are fundamental and not negotiable. We do not charge any fee or seek any deposits, advance, or money from any career aspirant in relation to our recruitment process. We have not authorized any party or person to collect any money from career aspirants in any form whatsoever for promises of getting jobs in Deloitte or for being considered against roles in Deloitte. We follow a professional recruitment process, provide a fair opportunity to eligible applicants and consider candidates only on merit. No one other than an authorized official of Deloitte is permitted to offer or confirm any job offer from Deloitte. We advise career aspirants to exercise caution. In this regard, you may refer to a more detailed advisory given on our website at: https://www2.deloitte.com/in/en/careers/advisory-for-career-aspirants.html?icid=wn_

CoinFantasy is seeking a Senior Blockchain Developer to join their team. In this role, you will play a crucial part in designing, developing, and implementing blockchain solutions for CoinFantasy's suite of products and protocols. Your responsibilities will include designing, developing, and deploying various blockchain solutions such as smart contracts, decentralized applications (dApps), tokenization systems, and protocol upgrades. You will be tasked with writing and auditing secure smart contracts using languages like Solidity and Rust for different types of tokens (ERC-20, ERC-721, SPL), DeFi protocols, and governance systems. Additionally, you will research and implement tokenomics models, build and optimize multi-chain contracts with cross-chain interoperability, and ensure contract security and gas efficiency. Furthermore, you will develop supporting APIs and microservices for blockchain interaction, implement event-driven architectures for real-time on-chain data processing, and optimize database schemas for blockchain data indexing. Collaboration with business and software developers to create innovative solutions, researching and documenting blockchain structures, and staying updated with current blockchain technology trends will also be part of your role. To be successful in this position, you should hold a Bachelor's or Master's degree in Engineering, IT, Computer Science, or a related field, along with at least 6 years of experience in software development and blockchain solutions. Proficiency in blockchain development frameworks and tools like Truffle, Remix, and Web3.js, as well as strong programming skills, is required. Experience with languages such as Solidity, Rust, Golang, Node.js, Java, C++, and JavaScript, along with knowledge of back-end skills, algorithms, data structures, and cryptography, are essential. Familiarity with microservice architectures, Docker containers, and a passion for keeping abreast of current technology tools will be beneficial. CoinFantasy is a Play to Invest platform that offers users engaging games to learn about investment in a risk-free environment. Joining the team at CoinFantasy offers a competitive salary, the opportunity to be part of a rapidly expanding company's core team, a rewarding and challenging work environment, and ample professional and career growth prospects. If you are passionate about blockchain technology, have a strong development background, and are looking to work in a dynamic and innovative environment, this role at CoinFantasy could be the perfect fit for you. For more information, please visit their website at [CoinFantasy Website](https://www.coinfantasy.io/).,

Overview We are looking for a Security Engineer III to join the Critical Start Technologies Private Ltd. team, operating under the Critical Start umbrella, supporting our India operations. This is an exciting opportunity for a skilled security professional with 5–8 years of hands-on experience in security engineering, threat detection, and investigation. We are looking for a curious, technically adept individual who thrives in a fast-paced, high-impact environment. You bring deep technical expertise, a proactive mindset, and a passion for solving complex security challenges using industry-leading tools and frameworks. The ideal candidate is a driven and resourceful security professional who thrives on diving deep into threat activity—whether it’s analyzing port scans or crafting custom detection queries. With a strong understanding of the MITRE ATT&CK framework, you’re capable of building your own detection content and conducting investigations independently, without relying solely on predefined rules. You take initiative, enjoy improving processes, and excel in autonomous, project-based environments. Your analytical mindset, technical curiosity, and collaborative spirit enable you to contribute meaningfully to both team goals and larger security objectives. Responsibilities Investigate and validate alerts generated by industry-standard EDR and SIEM platforms, ensuring data quality and investigative clarity for our Security Operations Center (SOC). Proactively identify opportunities to improve alert fidelity through detection tuning, custom rule development, and the creation of IOCs and IOAs. Author and maintain clear, user-centric investigation procedures to guide SOC analysts and drive consistency in alert handling. Collaborate cross-functionally with Engineering and Product teams to enhance security tools and improve platform efficacy. Conduct periodic quality assurance checks on alerts—especially during platform updates or vendor API changes—to maintain actionable fidelity. Design, write, and translate threat detection content across tools including but not limited to Splunk, Microsoft Sentinel, Devo, Microsoft 365 Defender, Palo Alto Cortex XDR, CrowdStrike, and SentinelOne. Lead internal knowledge-sharing sessions and mentor junior team members to foster a culture of collaboration and continuous learning. Operate effectively in a global, agile team spanning multiple time zones, balancing independence with team collaboration. Qualifications Required Qualifications: 5+ years of experience in cybersecurity with a focus on threat detection, security engineering, or incident investigation. Hands-on experience with multiple EDR and SIEM tools such as Splunk, Microsoft Sentinel, Devo, Microsoft 365 Defender, Palo Alto Cortex XDR, CrowdStrike, SentinelOne, Carbon Black, or Cylance. Proficiency in one or more query languages (e.g., SPL, KQL, Sumo Logic). Experience building use cases for SIEM platforms and a solid grasp of log source types including firewalls, operating systems, and proxies. Strong verbal and written communication skills with the ability to convey complex concepts to both technical and non-technical stakeholders. Ability to work independently while effectively collaborating with distributed teams. Familiarity with tools like GitHub, Jira, and Confluence. Preferred Qualifications: Professional certifications such as OSCP, CISSP, or equivalent. Experience creating parsers or custom log processing logic. Exposure to agile development environments and DevSecOps culture.