Full-Time Senior SIEM Engineer

Resillion is hiring a remote Full-Time Senior SIEM Engineer. The career level for this job opening is Senior Manager and is accepting Bengaluru based applicants remotely. Read complete job description before applying.

Resillion

Job Title

Senior SIEM Engineer

Posted

Career Level

Full-Time

Career Level

Senior Manager

Locations Accepted

Bengaluru

Job Details

Title: Lead SIEM Engineer/ SOC Engineering Lead

Experience Range: 9-14 Years

Location: Bangalore

About You:

  • The successful candidate will be a passionate information security professional with the ability to communicate to different business and IT leaders.
  • The candidate will demonstrate drive, intelligence, maturity, and energy and will have a proven dedicated desire and attitude towards Information security related topics.
  • The ideal candidate thrives in a fast-paced environment, with a strong preference for technical, hands-on work. They should also possess a keen aptitude for mentoring and coordinating the efforts of other engineers, enhancing team performance and cohesion.
  • The candidate will exhibit a customer-focused mindset, employing a consultative approach to understand and meet client needs effectively, thereby ensuring superior service and support in all interactions.

Key responsibilities

  • Provide leadership and supervision to the SOC Engineering team ensuring tasks and projects are organised and completed to a high standard.
  • Deploy and configure Microsoft Sentinel solutions for our customers, in support of enabling our Managed SOC services.
  • Interact with customers and technical service leads to understand their business challenges and desired outcomes.
  • Develop technical solutions to automate repeatable tasks, including Sentinel Workbooks and Logic Apps.
  • Research, design, and implement cyber security solutions including but not limited to the Microsoft Security stack.
  • Drive the review and update of client supporting documentation such as cyber security policies, architectures, standards, and playbooks.
  • Conduct ongoing research around the threat landscape, including threat actors, TTPs and develop analytical rules, IR actions, investigation strategies and tooling.
  • Support the SOC Team investigate and respond to client cyber security incidents taking an active role in incident response management.
  • Ensure each customer’s operational health is maintained and respond to all platform requests within agreed SLAs.
  • Liaise with Account Managers across the business and assist with the presentation of SOC Monitor technology demonstrations to both current and prospective customers.

Required skills:

  • Outstanding written and verbal communication skills in English, essential for effective collaboration and client engagement.
  • Substantial experience in a customer-facing role, effectively communicating with diverse stakeholder groups.
  • Demonstrated leadership in managing and guiding technical teams.
  • Extensive experience within a Managed Security Service Provider (MSSP) environment.
  • Advanced proficiency in SIEM, EDR, and EPP, with technical expertise in solutions including Microsoft Sentinel, Elastic, and CrowdStrike Falcon.
  • Expertise in creating, tuning, and managing SIEM analytical rules to optimise threat detection and response capabilities, ensuring the efficacy and efficiency of security monitoring systems.
  • A robust understanding of query and scripting languages such as KQL, Python, PowerShell, and RegEx, enhancing operational efficiency.
  • Significant experience in leading responses to major security incidents.
  • Comprehensive knowledge of Windows, Linux, and cloud technologies, particularly Microsoft Azure and Office 365.
  • Proven ability in analysing complex data, making strategic recommendations, and presenting findings to client and management teams as part of continuous service improvement initiatives.
  • Detailed understanding of attack vectors, skilled in distinguishing between normal and anomalous activities, and adept at recommending countermeasures and remediation strategies.
  • Experience collaborating with penetration testers and Red Team members in conducting Purple Teaming events.
  • Degree in Computer Science, Information Security, or a related field – Must have.
  • SC-200 Microsoft Security Operations Analyst – Must have.
  • AZ-500 Microsoft Azure Security Technologies – Must have.
  • SC-100 Microsoft Cybersecurity Architect – Highly desirable.
  • CompTIA Security+ SY0-601 – Desirable.
  • Certified Ethical Hacker (CEH) – Desirable.
  • GIAC Security Essentials (GSEC) – Desirable.
  • GIAC Certified Incident Handler (GCIH) – Desirable.

FAQs

What is the last date for applying to the job?

The deadline to apply for Full-Time Senior SIEM Engineer at Resillion is 2nd of January 2025 . We consider jobs older than one month to have expired.

Which countries are accepted for this remote job?

This job accepts [ Bengaluru ] applicants. .

Related Jobs You May Like

Digital Identity Specialist (remote)

Lisbon, Portugal
1 day ago
Digital Identity
EIDAS Regulation
Mobile Development
Penguin Formula
Full-Time
Experienced

CSIRT ANALYST (M/F/D)

Munich/Augsburg (Germany) or Remote (from anywhere in Germany)
2 days ago
Cybersecurity
Digital Forensics
Incident Response
ADVENS
Full-Time
Experienced

Threat Intelligence Researcher

Indonesia
2 days ago
Malware Analysis
Python
Security Research
SecurityScorecard
Full-Time
Experienced

Embedded VSOC Analyst (Japanese Speaker)

Australia
3 days ago
Data Visualization
Geopolitical Analysis
Japanese Language
Sibylline Ltd
Full-Time
Experienced

Embedded VSOC Analyst (Korean Speaker)

Singapore, Singapore
3 days ago
Cyber Security
Data Analysis
Geopolitical Risk
Sibylline Ltd
Full-Time
Experienced

Embedded VSOC Analyst

Brazil
3 days ago
Data Analysis
Geopolitical Risk
Intelligence Gathering
Sibylline Ltd
Full-Time
Experienced

Security Architect

Worldwide
3 days ago
Azure DevOps
Jira
Zachary Piper Solutions, LLC
Full-Time
Experienced

Solutions Consultant ( Healthcare / DMV )

Washington , DC
3 days ago
Cloud Architectures
Cybersecurity Solutions
Network Security
Palo Alto Networks
Full-Time
Experienced
YEAR $198000 - $273000

Information Security Engineer - IoT

Chicago, Illinois
3 days ago
Cloud Security
Cybersecurity
IoT Security
Fortune Brands
Full-Time
Experienced
YEAR $115000 - $130000

DevSecOps Engineer

Novi Sad, Serbia
4 days ago
AWS
Azure
Cloud Security
Headhunte.rs
Full-Time
Experienced

Senior Penetration Tester & Reporting Specialist

Beograd, Serbia
4 days ago
Customer Interaction
Cybersecurity
Penetration Testing
Headhunte.rs
Full-Time
Experienced

Security Analyst

USA
4 days ago
Communication
SOC Assessment
Robert Half
Full-Time
Manager
YEAR $90000 - $115000

Looking for a specific job?