Job Description

Project Role :

Security Architect

Project Role Description :

Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.

Must have skills :

Security Information and Event Management (SIEM)

Good to have skills :

NA

Minimum

5

year(s) of experience is required

Educational Qualification :

15 years full time education



Summary: As a Security Delivery Lead, we are seeking a skilled SIEM Engineer to join our cybersecurity team. In this role, you will be responsible for deploying, configuring, maintaining, and optimizing our Security Information and Event Management (SIEM) platform. You will work closely with security analysts, incident responders, and IT teams to ensure robust log collection, threat detection, and incident response capabilities. Roles & Responsibilities: - Design, deploy, and maintain the organization's SIEM infrastructure (CrowdStrike Next-Gen SIEM) - Onboard new data sources into the SIEM, including log parsing, normalization, and enrichment. - Develop and fine-tune correlation rules, alerts, dashboards, and reports to detect potential security incidents. - Proficient in writing queries using CrowdStrike Query Language (CQL) to efficiently retrieve, analyze, and filter security data. - Work with security analysts to improve detection capabilities. - Ensure compliance with regulatory and organizational log management requirements. - Troubleshoot and resolve SIEM performance, ingestion, and alerting issues. - Automate repetitive tasks using scripts and APIs to improve efficiency. - Assist in incident investigations by providing SIEM logs and context to responders. - Stay current with threat intelligence and industry trends to improve rule logic and use cases. - Document configurations, processes, and procedures for SIEM operations. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM). - Experience with incident response and threat management. - Strong understanding of security frameworks and compliance standards. - Ability to analyze security incidents and provide actionable insights. - Familiarity with security monitoring tools and technologies. - CrowdStrike Certified SIEM Engineer (CCSE) - Experience with SOAR tools or integrating SIEM with SOAR platforms. - Experience in cloud environments and their security logging. Additional Information: - The candidate should have minimum experience in cybersecurity or SOC environments with hands-on experience with at least one major SIEM platform (e.g., Splunk, Sentinel). - This position is based at our Bengaluru office. - A 15 years full time education is required. - Strong knowledge of networking, system logs, and security principles. - Experience with log collection, parsing, and normalization. - Scripting experience (e.g., Python, PowerShell, Bash) for automation and integrations. - Familiarity with MITRE ATT&CK, threat detection frameworks, and use case development. - Understanding common security tools (EDR, IDS/IPS, firewalls) and how they integrate with SIEMs.




15 years full time education