- Monitoring & Investigation: Actively monitor SIEM dashboards for security breaches, anomalies, and suspicious activities.
- Incident Response: Perform initial triage of alerts, investigate, contain threats, and document incidents.
- SIEM Administration: Configure, tune, and maintain SIEM rules, dashboards, and use cases.
- Log Management: Analyze logs from multiple sources (Firewalls, EDR, Servers) to detect patterns of attack.
- Threat Detection & Hunting: Use tools such as UEBA (User and Entity Behavior Analytics) to identify potential insider threats or compromised accounts.
- Reporting: Generate daily/monthly security reports and recommend improvements to the security posture
- Technical Experience: 3–5+ years in a Security Operations Center (SOC) environment.
- SIEM Expertise: Hands-on experience with tools like Splunk, IBM QRadar, Microsoft Sentinel, or ArcSight.
- Network/System Knowledge: Understanding of TCP/IP, operating systems (Windows/Linux), and security tools (EDR, Firewalls).
- Analytical Skills: Ability to analyze large datasets to identify potential threats.
Job Types: Full-time, Permanent
Pay: ₹30,000.00 - ₹35,000.00 per month
Benefits:
- Health insurance
- Provident Fund
Work Location: In person
