TC-CS-Cyber Detection and Response-SIEM OT-Senior

We are looking for a skilled Senior SIEM Specialist with a strong background in Operational Technology (OT) to join our dynamic team. The ideal candidate will have proven expertise in SIEM content development, hands-on experience with OT tools, and a deep understanding of OT environments. This role requires at least 8 years of overall experience in cybersecurity, with a minimum of 4 years in OT/IOT Security solutions. ### Roles and Responsibility Design and develop impactful SIEM use cases tailored to OT environments. Onboard data into SIEM from various sources, including custom parsers for unsupported sources. Create advanced visualizations and dashboards to provide near real-time visibility into OT applications. Provide operational support for globally deployed OT network monitoring solutions like Nozomi, Claroty, and Armis. Assist clients during testing, evaluation, pilot, production, and training phases to ensure successful deployment. Offer consultative advice in security principles and best practices related to SIEM operations. ### Job Requirements At least 8 years of overall experience in cybersecurity, with a minimum of 4 years in OT/IOT Security solutions. Strong knowledge of IT/OT/IoT communication protocols and experience supporting industrial protocols. Strong oral, written, and listening skills are essential for effective consulting. Background in network administration, with the ability to work at all layers of the OSI model. Knowledge of Vulnerability Management, Windows and Linux basics, including installations, Windows Domains, trusts, GPOs, server roles, Windows security policies, user administration, and Linux security and troubleshooting. Good programming or scripting skills in languages such as Python, JavaScript, Bash, PowerShell, etc. Experience in designing and implementing Splunk solutions with a focus on IT Operations, Application Analytics, User Experience, Application Performance, and Security Management. Certification in any one of the SIEM Solutions such as Splunk, IBM QRadar, Exabeam, Securonix is an added advantage. Certifications in core security-related disciplines are also advantageous.