SIEM Engineer Developer at NetConnect Global

View All Jobs

Job description

Location- Mumbai

Experience: 3-6 years

Notice Period- Immediate joiners required ( 15 Days-30 Days Max)

Qualification: Graduate

CTC: 9-11 LPA

WFM/Onsite/Hybrid : Hybrid

Direct Responsibilities

Install and administrate the servers of the SIEM Infrastructure
Participate to the integration of new technologies logs
Support logs parsing using custom parser/GROK development.
Deploy / update use cases on the platform
Fine tune the alerts in collaboration with CSIRTs and SMC
Improve existing use cases / tools
Project management
Improve the automation on the team processes
Be a full time member of the Production CSIRT / Logging & Detection team and participate to the various activities of the team

Contributing Responsibilities

Contribute to the Permanent Control framework for implementation of policies and procedures in daytoday business activities, such as Control Plan.
Comply with regulatory requirements and internal guidelines.
Contribute to the reporting of all incidents according to the Incident Management System

Technical & Behavioral Competencies

At least 3 years of experience in the IT Security field
Strong knowledge in administration of UNIX systems
Basic knowledge in administration of Windows servers, Architecture and Network
Experience on SIEM and use cases, log monitoring (ELK Stack will be a plus)
Experience as Developer / DevOps for automation of tasks using Python language
Independent, self-motivated and innovative with good problem solving, interpersonal and communication skills, and can foster teamwork
Understanding of cyber threat analysis models such as kill chain, diamond model, etc and how they apply to both targeted and non-targeted threats
Experience in common scripting languages such as Python
Knowledge in Elastic language/infrastructure will be a plus
Knowledge in PHP/HTML/CSS/SQL will be a plus

Qualification