Line of Service

Advisory

Industry/Sector

FS X-Sector

Specialism

Risk

Management Level

Senior Associate

Job Description & Summary

A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats.

Job Title: Senior SIEM Engineer

Location: Mumbai

Experience: > 4yrs in any SIEM ArcSight/QRadar/LogRhythm/Securonix/Google Chronicle.

Job Overview:
As a SIEM Engineer, you will be responsible for managing and optimizing the Security Information and Event Management (SIEM) system. Your role will be crucial in ensuring the security and integrity of the organization's IT infrastructure by monitoring, detecting, and responding to security incidents. You will work closely with other IT and security teams to enhance our security posture and maintain compliance with industry standards.

Roles and Responsibilities:

SIEM Management:Administer and maintain the SIEM platform, including configuration, tuning, and troubleshooting to ensure optimal performance.
Deployment and Upgrades:Install, upgrade, and configure the SIEM system in various environments. Ensure the system is up-to-date with the latest security patches and updates.
Use Case Development:Develop and implement use cases, rules, and correlation logic to effectively detect security threats. Perform fine-tuning as necessary to minimize false positives.
Log Source Integration:Integrate various types of log sources into the SIEM system. Ensure comprehensive coverage and accurate data collection.
Custom Integrations:Develop custom parsers and connectors for log sources that are not directly supported by the SIEM vendor.
Incident Response:Work closely with the incident response team to investigate and resolve security incidents. Provide actionable insights and recommendations based on SIEM data.
Continuous Improvement:Evaluate and recommend enhancements to SIEM processes, tools, and technologies to improve overall security posture.
Auditing and Compliance:Conduct regular audits of the SIEM system to identify and address gaps. Ensure compliance with industry standards and regulatory requirements.
Data Management:Configure data archiving, backup, and purging processes to meet compliance and retention requirements.
Support:Provide support to L1 and L2 teams by sharing knowledge base details and documentation. Assist in troubleshooting and resolving issues.
Collaboration:Work with OEM (Original Equipment Manufacturer) support to resolve issues and incidents related to the SIEM system.
Security Advisories:Review and act upon security advisories. Implement necessary detection measures and update the SIEM system accordingly.

Qualifications:

Bachelor’s degree in information technology, Computer Science, or a related field.
4+ years of experience in SIEM management and administration.
Hand on Experience in deploying and managing SIEM tools such as Splunk, ArcSight, Securonix, Chronicle or similar platforms.
Strong understanding of security incident detection and response processes.
Experience with log management and log source integration.
Knowledge of scripting languages (e.g., Python, PowerShell) for custom integrations.
Excellent analytical and problem-solving skills.
Strong communication and teamwork abilities.
Relevant certifications such as CISSP, CISM, or SIEM vendor-specific certifications are a plus.

Mandatory skills-SIEM ArcSight/QRadar/LogRhythm/Securonix/Google Chronicle
Preferred skills-SIEM ArcSight/QRadar/LogRhythm/Securonix/Google Chronicle
Years of experience-4-8
Qualification-B.Tech

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Available for Work Visa Sponsorship?

Government Clearance Required?

Job Posting End Date

Company

For job seekers

For companies

Cyber Security jobs

Senior Associate

Senior Associate

Senior Associate

Location

Workplace

Type

Posted

Website

Similar Jobs

Risk Services, Sustainability and Climate Change Assurance- Associate / Senior Associate

Risk Services - Internal Auditor - Experienced Associate / Senior Associate

Associate & Senior Associate - Digital Risk Solutions - Milano

Associate & Senior Associate - Digital Risk Solutions - Roma

Associate & Senior Associate - IT Security Governance - Milano [OTS]

Associate & Senior Associate - Internal Audit, Governance, Risk & Controls - Roma

Associate & Senior Associate - Internal Audit, Governance, Risk & Controls, Audit Involvement - Torino, Genova

Associate & Senior Associate - Internal Audit, Governance, Risk & Controls, Audit Involvement - Padova, Verona, Brescia

Associate & Senior Associate - Internal Audit, Governance, Risk & Controls, Audit Involvement - Bologna, Parma, Firenze

Risk Services, Digital Audit - Associate / Senior Associate