Senior SIEM Architect
Hyderabad
Key Responsibilities
* Architect and implement multi-tenant SIEM Collector pipelines services (receivers, processors, exporters) across AWS, Azure, and GCP and other feeds.
* Build multi-source ingestion from CloudTrail, Azure Monitor, GCP Audit Logs, Splunk, Sentinel, and API logs
* Normalise telemetry to OTel semantic conventions.
* Design and implement: Detection engines (rules + ML anomaly detection)
* Behavioural analytics (entity/data flow modelling)
* Develop analytics for: Usage patterns, risk scoring, and data flow insights
* Enable real-time alerting, severity classification, and audit logging (immutable storage)
* Implement DLQ, and replay pipelines
* Partner with other engineers, product managers and engineering stakeholders to deliver implementation.
Required Qualifications
* Expert in SIEM, multitenant distributed SAAS applications, Java microservices.
* Strong Experience with leading SIEM platforms (e.g., Splunk, Sentinel, Elastic, Chronicle)
* Strong background in large-scale log processing
* Hands-on experience with OpenTelemetry (OTel Collector, OTTL)
* Strong streaming/data pipeline expertise (Kafka + Kinesis/Event Hub/PubSub; Flink/Kafka Streams; Data warehousing and analytics technologies)
* Working knowledge of ML-based anomaly detection and behavioural analytics is a plus.
* Experience with Kubernetes and Infrastructure as Code
Pay: ₹345,566.50 - ₹1,872,123.06 per year
Work Location: In person
