Full-Time Senior SIEM Engineer
Resillion is hiring a remote Full-Time Senior SIEM Engineer. The career level for this job opening is Senior Manager and is accepting Bengaluru based applicants remotely. Read complete job description before applying.
Resillion
Job Title
Senior SIEM Engineer
Posted
Career Level
Full-Time
Career Level
Senior Manager
Locations Accepted
Bengaluru
Share
Job Details
Title: Lead SIEM Engineer/ SOC Engineering Lead
Experience Range: 9-14 Years
Location: Bangalore
About You:
- The successful candidate will be a passionate information security professional with the ability to communicate to different business and IT leaders.
- The candidate will demonstrate drive, intelligence, maturity, and energy and will have a proven dedicated desire and attitude towards Information security related topics.
- The ideal candidate thrives in a fast-paced environment, with a strong preference for technical, hands-on work. They should also possess a keen aptitude for mentoring and coordinating the efforts of other engineers, enhancing team performance and cohesion.
- The candidate will exhibit a customer-focused mindset, employing a consultative approach to understand and meet client needs effectively, thereby ensuring superior service and support in all interactions.
Key responsibilities
- Provide leadership and supervision to the SOC Engineering team ensuring tasks and projects are organised and completed to a high standard.
- Deploy and configure Microsoft Sentinel solutions for our customers, in support of enabling our Managed SOC services.
- Interact with customers and technical service leads to understand their business challenges and desired outcomes.
- Develop technical solutions to automate repeatable tasks, including Sentinel Workbooks and Logic Apps.
- Research, design, and implement cyber security solutions including but not limited to the Microsoft Security stack.
- Drive the review and update of client supporting documentation such as cyber security policies, architectures, standards, and playbooks.
- Conduct ongoing research around the threat landscape, including threat actors, TTPs and develop analytical rules, IR actions, investigation strategies and tooling.
- Support the SOC Team investigate and respond to client cyber security incidents taking an active role in incident response management.
- Ensure each customer’s operational health is maintained and respond to all platform requests within agreed SLAs.
- Liaise with Account Managers across the business and assist with the presentation of SOC Monitor technology demonstrations to both current and prospective customers.
Required skills:
- Outstanding written and verbal communication skills in English, essential for effective collaboration and client engagement.
- Substantial experience in a customer-facing role, effectively communicating with diverse stakeholder groups.
- Demonstrated leadership in managing and guiding technical teams.
- Extensive experience within a Managed Security Service Provider (MSSP) environment.
- Advanced proficiency in SIEM, EDR, and EPP, with technical expertise in solutions including Microsoft Sentinel, Elastic, and CrowdStrike Falcon.
- Expertise in creating, tuning, and managing SIEM analytical rules to optimise threat detection and response capabilities, ensuring the efficacy and efficiency of security monitoring systems.
- A robust understanding of query and scripting languages such as KQL, Python, PowerShell, and RegEx, enhancing operational efficiency.
- Significant experience in leading responses to major security incidents.
- Comprehensive knowledge of Windows, Linux, and cloud technologies, particularly Microsoft Azure and Office 365.
- Proven ability in analysing complex data, making strategic recommendations, and presenting findings to client and management teams as part of continuous service improvement initiatives.
- Detailed understanding of attack vectors, skilled in distinguishing between normal and anomalous activities, and adept at recommending countermeasures and remediation strategies.
- Experience collaborating with penetration testers and Red Team members in conducting Purple Teaming events.
- Degree in Computer Science, Information Security, or a related field – Must have.
- SC-200 Microsoft Security Operations Analyst – Must have.
- AZ-500 Microsoft Azure Security Technologies – Must have.
- SC-100 Microsoft Cybersecurity Architect – Highly desirable.
- CompTIA Security+ SY0-601 – Desirable.
- Certified Ethical Hacker (CEH) – Desirable.
- GIAC Security Essentials (GSEC) – Desirable.
- GIAC Certified Incident Handler (GCIH) – Desirable.
FAQs
What is the last date for applying to the job?
The deadline to apply for Full-Time Senior SIEM Engineer at Resillion is
2nd of January 2025
. We consider jobs older than one month to have expired.
Which countries are accepted for this remote job?
This job accepts [
Bengaluru
] applicants. .
Related Jobs You May Like
Digital Identity Specialist (remote)
Lisbon, Portugal
1 day ago
Digital Identity
EIDAS Regulation
Mobile Development
Penguin Formula
Full-Time
Experienced
CSIRT ANALYST (M/F/D)
Munich/Augsburg (Germany) or Remote (from anywhere in Germany)
2 days ago
Cybersecurity
Digital Forensics
Incident Response
ADVENS
Full-Time
Experienced
Threat Intelligence Researcher
Indonesia
2 days ago
Malware Analysis
Python
Security Research
SecurityScorecard
Full-Time
Experienced
Embedded VSOC Analyst (Japanese Speaker)
Australia
3 days ago
Data Visualization
Geopolitical Analysis
Japanese Language
Sibylline Ltd
Full-Time
Experienced
Embedded VSOC Analyst (Korean Speaker)
Singapore, Singapore
3 days ago
Cyber Security
Data Analysis
Geopolitical Risk
Sibylline Ltd
Full-Time
Experienced
Embedded VSOC Analyst
Brazil
3 days ago
Data Analysis
Geopolitical Risk
Intelligence Gathering
Sibylline Ltd
Full-Time
Experienced
Security Architect
Worldwide
3 days ago
Azure DevOps
Jira
Zachary Piper Solutions, LLC
Full-Time
Experienced
Solutions Consultant ( Healthcare / DMV )
Washington , DC
3 days ago
Cloud Architectures
Cybersecurity Solutions
Network Security
Palo Alto Networks
Full-Time
Experienced
YEAR $198000 - $273000
Information Security Engineer - IoT
Chicago, Illinois
3 days ago
Cloud Security
Cybersecurity
IoT Security
Fortune Brands
Full-Time
Experienced
YEAR $115000 - $130000
DevSecOps Engineer
Novi Sad, Serbia
4 days ago
AWS
Azure
Cloud Security
Headhunte.rs
Full-Time
Experienced
Senior Penetration Tester & Reporting Specialist
Beograd, Serbia
4 days ago
Customer Interaction
Cybersecurity
Penetration Testing
Headhunte.rs
Full-Time
Experienced
Security Analyst
USA
4 days ago
Communication
SOC Assessment
Robert Half
Full-Time
Manager
YEAR $90000 - $115000