2,547 Siem jobs in India
SOC/SIEM
Hyderabad, Andhra Pradesh
Tata Consultancy Services
Posted 6 days ago
Job Viewed
Job Description
Greetings from TCS!
Role: SOC Architect
Experience: 10-13 years
Location: Pan India
Must-Have**
1. Google Secops/SIEM
2. EDR
3. Email Security/Phishing
4. Incidents investigation and Triaging
5. Threat Hunting
Job Description:
- Analyze complex security incidents escalated from L1 and L2.
- Identify root cause and attack vectors.
- Proactively search for hidden threats or intrusions that bypass automated dectections.
- Conduct static and dynamic malware analysis.
- Improve SIEM rules, alerts and usecases based on incident learning.
- Analyze and incorporate threat intelligence feeds.
- Develop scripts or playbooks for automating repetitive tasks.
Thanks & Regards
Sindhuja Polisetty
HR TAG – Cyber Security
Tata Consultancy Services
This advertiser has chosen not to accept applicants from your region.
0
SIEM Admin
Bengaluru, Karnataka
Tata Consultancy Services
Posted 6 days ago
Job Viewed
Job Description
Dear Candidate
Tata Consultancy Services is hiring for Sr SIEM Admin
Experience: 8-10 Years
Location: Bangalore
Role and Responsibility
Sr. SIEM admin with minimum 5+ yrs of exp,strong knowledge in Custom parser development,
Threat detection use-case designing, implementation and fine-tuning,create rules/dashboards for compliance and audit requirements.
Strong understanding of security incident management, malware management and vulnerability management processes
Working knowledge of the industry models such as the Cyber Kill Chains, Diamond Model and MITRE ATT&CK framework.
Regards,
S.Shanbaga
Tata Consultancy Services
Human Resources CSP TAG
This advertiser has chosen not to accept applicants from your region.
1
SIEM Admin
Mumbai, Maharashtra
Atos
Posted 6 days ago
Job Viewed
Job Description
Experience: 4+ Yrs
Job Location: Mumbai
About the Role
Configure, and maintain the SIEM platform (e.g., ELK, Splunk, QRadar, ArcSight, LogRhythm, Sentinel, etc.). Develop and fine-tune correlation rules, alerts, and dashboards to support SOC use cases. Onboard log sources from various platforms (Windows, Linux, cloud, network devices, applications). Perform health checks, upgrades, and patch management of SIEM components. Work closely with SOC analysts to improve detection capabilities and reduce false positives. Collaborate with threat intel and incident response teams to create advanced detection logic. Automate log ingestion and alert tuning using scripting (Python, PowerShell, etc.). Develop and maintain documentation, runbooks, and standard operating procedures (SOPs).
Responsibilities
- Configure, and maintain the SIEM platform (e.g., ELK, Splunk, QRadar, ArcSight, LogRhythm, Sentinel, etc.)
- Develop and fine-tune correlation rules, alerts, and dashboards to support SOC use cases
- Onboard log sources from various platforms (Windows, Linux, cloud, network devices, applications)
- Perform health checks, upgrades, and patch management of SIEM components
- Work closely with SOC analysts to improve detection capabilities and reduce false positives
- Collaborate with threat intel and incident response teams to create advanced detection logic
- Automate log ingestion and alert tuning using scripting (Python, PowerShell, etc.)
- Develop and maintain documentation, runbooks, and standard operating procedures (SOPs)
Qualifications
Beneficial:
- Good Documentation skills
- Good at Incident Management
Required Skills
- Strong communication skills
- Ability to work comfortably with different regions
- Actively participate within internal project community
- Good team player, ability to work on a local, regional and global basis and as part of joint cross location initiative
- Self-motivated, able to work independently and with a team
- Able to perform under pressure
Preferred Skills
Location: Mumbai-Powai
Pay range and compensation package
Not specified in the provided job description.
Equal Opportunity Statement
We are committed to diversity and inclusivity.
``
This advertiser has chosen not to accept applicants from your region.
2
JSMAP SIEM Admin
Mumbai, Maharashtra
Jio
Posted 24 days ago
Job Viewed
Job Description
Company Overview
Jio, with its headquarters in Navi Mumbai, Maharashtra, is at the forefront of India's telecommunications revolution, supported by a workforce of over 10,001 employees. As a leading telecom operator with more than 400 million customers, Jio has also pioneered an array of digital applications and services. The company's comprehensive 5G solutions and cloud-native platforms cater to both B2C and B2B segments, setting a benchmark in the Media & Telecommunications industry. Visit our website for more information.
Job Overview
We are seeking a JSMAP SIEM Admin for a mid-level, full-time position located in Mumbai, Mumbai Suburban. The chosen candidate will be responsible for managing and optimizing the Security Information and Event Management (SIEM) system, ensuring optimal performance and security for our telecommunications infrastructure.
Qualifications and Skills
- Proficiency in Elastic Stack (ELK) is mandatory skill for managing and analyzing logs effectively.
- Strong understanding of cyber security principles and practices to enhance system security.
- Experience with grok patterns for parsing and structuring log data essential for analysis.
- Proficient in Java programming for developing and maintaining custom integrations.
- Linux knowledge is crucial for managing and configuring system environments effectively.
- Ability to collaborate with cross-functional teams to streamline security processes.
- Exceptional problem-solving skills to troubleshoot and resolve SIEM related challenges.
- Effective communication skills for preparing reports and conveying technical information.
Roles and Responsibilities
- Install, configure, and maintain the SIEM system to ensure optimal performance.
- Monitor security events, conduct thorough analysis, and respond to incidents.
- Develop and implement security policies and procedures for effective threat management.
- Collaborate with security analysts to refine detection capabilities and enhance alert quality.
- Perform regular system health checks and audits to ensure compliance and integrity.
- Create custom parsers and connectors to integrate new log sources seamlessly.
- Stay updated with the latest industry trends to proactively address emerging threats.
- Prepare and maintain comprehensive documentation for systems and processes.
This advertiser has chosen not to accept applicants from your region.
3
SIEM Onboarding Engineer
400001 Mumbai, Maharashtra
₹300000 - ₹500000 annum
2coms
Posted 579 days ago
Job Viewed
Job Description
Hiring for SIEM Onboarding Engineer
Our Client is a group of insurance companies owned by Munich Re. ERGO is one of the largest insurance groups in Europe. It operates in over 30 countries, especially in Europe and Asia.
Designation: Engineer Experience: 5-8 years Location: Hiranandani Gardens, Powai, Mumbai Mode: Work from Office Job Description: Security information and event management (SIEM)log collection / parsing / correlation / visualization Elastic stack (Beats, Logstash,Elasticsearch) / any other leading SIEM solution (Such as, ArcSight,Radar, Splunk)Knowledge of Linux Operating System e.g. RHEL, CentOS
This advertiser has chosen not to accept applicants from your region.
4
Security Consultant - SIEM L3
Mumbai, Maharashtra
IBM
Posted 2 days ago
Job Viewed
Job Description
**Introduction**
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe. You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio, including Software and Red Hat. Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in groundbreaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
**Your role and responsibilities**
* Responsible for implementation partner to see project on track along with providing required reports to management and client
* Handle the project as well as BAU operations while ensuring high level of systems security compliance
* Coordinate with and act as an authority to resolve incidents by working with other information security specialists to correlate threat assessment data.
* Analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents.
* Ready to support for 24/7 environment.
**Required technical and professional expertise**
* 7+ years of IT experience in security with at least 4+ Years in Security Operation Centre with SIEMs.
* B.E./ B. Tech/ MCA/ M.Sc.
* Maintaining SIEM/UEBA platform hygiene, Scripting, Automation SOAR Playbook Creation with Testing, with Change/Problem/Incident Management, with CP4S platform integration & dashboarding, Recovery Support.
* Expertise in Security Device Management SIEM, Arcsight, Qradar, incident response, threat hunting, Use case engineering, SOC analyst, device integration with SIEM.
* Working knowledge of industry standard risk, governance and security standard methodologies
* Proficient in incident response processes - detection, triage, incident analysis, remediation and reporting.
* Ability to multitask and work independently with minimal direction and maximum accountability.
**Preferred technical and professional experience**
* Preferred OEM Certified SOAR specialist + CEH
* Ambitious individual who can work under their own direction towards agreed targets/goals and with creative approach to work
* Intuitive individual with an ability to manage change and proven time management
* Proven interpersonal skills while contributing to team effort by accomplishing related results as needed
* Up-to-date technical knowledge by attending educational workshops, reviewing publications
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe. You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio, including Software and Red Hat. Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in groundbreaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
**Your role and responsibilities**
* Responsible for implementation partner to see project on track along with providing required reports to management and client
* Handle the project as well as BAU operations while ensuring high level of systems security compliance
* Coordinate with and act as an authority to resolve incidents by working with other information security specialists to correlate threat assessment data.
* Analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents.
* Ready to support for 24/7 environment.
**Required technical and professional expertise**
* 7+ years of IT experience in security with at least 4+ Years in Security Operation Centre with SIEMs.
* B.E./ B. Tech/ MCA/ M.Sc.
* Maintaining SIEM/UEBA platform hygiene, Scripting, Automation SOAR Playbook Creation with Testing, with Change/Problem/Incident Management, with CP4S platform integration & dashboarding, Recovery Support.
* Expertise in Security Device Management SIEM, Arcsight, Qradar, incident response, threat hunting, Use case engineering, SOC analyst, device integration with SIEM.
* Working knowledge of industry standard risk, governance and security standard methodologies
* Proficient in incident response processes - detection, triage, incident analysis, remediation and reporting.
* Ability to multitask and work independently with minimal direction and maximum accountability.
**Preferred technical and professional experience**
* Preferred OEM Certified SOAR specialist + CEH
* Ambitious individual who can work under their own direction towards agreed targets/goals and with creative approach to work
* Intuitive individual with an ability to manage change and proven time management
* Proven interpersonal skills while contributing to team effort by accomplishing related results as needed
* Up-to-date technical knowledge by attending educational workshops, reviewing publications
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
This advertiser has chosen not to accept applicants from your region.
5
Security developer (SIEM/ SOAR)
Bengaluru, Karnataka
NetApp
Posted 1 day ago
Job Viewed
Job Description
**Job Summary**
NetApp is bringing its industry leading, long-proven, enterprise-class data storage technologies into world's biggest public clouds and the simplicity & flexibility of cloud into customers' data centers. To realize the mission, we are developing a portfolio of cloud-led, data-centric storage platforms and services to help the world's leading organizations harness their data in new and interesting ways.
Our team is incubating new products that leverage the best-of-breed cloud-native managed services. We are creating a data-centric platform that will enable our partners and customers to create new and innovative data services through an API-first approach. This will foster rapid innovation in NetApp's product ecosystem and will enable data management across edge, core datacenter and cloud. Our team operates as a startup within the larger NetApp organization
We're looking for smart, growth-minded developers who take ownership and thrive in a fast-paced environment. In this R&D role at NetApp, you'll collaborate on design, implement solutions as per architecture, and stay focused on performance, scale, security, and cost.
**Job Requirements**
+ Highly recommended to have exposure to integrations with SIEM/ SOAR of vendors like Splunk or cloud solutions like Azure Sentinel.
+ Thorough understanding and experience with building data-centric full-stack SaaS applications on at least one of the major hyper-scaler cloud providers (AWS, Microsoft Azure or Google Cloud Platform).
+ Understanding of design, architecture principles and best practices in cloud, that include cloud health monitoring, capacity metering, billing.
+ Proficient in one or more of: Python, NodeJS, TypeScript, C++.
+ Experience using and implementing REST API and/ or GraphQL.
+ Preference to hands-on expertise with serverless technologies and asynchronous programming.
+ Experience using NoSQL databases (such as, DynamoDB). Working knowledge with a graph database would be an added plus.
+ Experience with CI build systems and automated testing.
+ Experience using infrastructure-as-code, such as Cloud Formation stack or Terraform.
+ Strong understanding of algorithms and data structures.
+ Sound systems constructions knowledge using databases, caching, scaling techniques, failure models, load balancers, networking etc.
+ Work in a team of engineers responsible for all phases of software development life cycle.
+ Work in NetApp office for the most part with flexibility of remote working
**Education**
+ B.E./ B-Tech or M.S. in Computer Science or related technical field.
+ 4+ years of relevant experience and must be hands-on with coding.
At NetApp, we embrace a hybrid working environment designed to strengthen connection, collaboration, and culture for all employees. This means that most roles will have some level of in-office and/or in-person expectations, which will be shared during the recruitment process.
**Equal Opportunity Employer:**
NetApp is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all laws that prohibit employment discrimination based on age, race, color, gender, sexual orientation, gender identity, national origin, religion, disability or genetic information, pregnancy, and any protected classification.
**Why NetApp?**
We are all about helping customers turn challenges into business opportunity. It starts with bringing new thinking to age-old problems, like how to use data most effectively to run better - but also to innovate. We tailor our approach to the customer's unique needs with a combination of fresh thinking and proven approaches.
We enable a healthy work-life balance. Our volunteer time off program is best in class, offering employees 40 hours of paid time off each year to volunteer with their favourite organizations. We provide comprehensive benefits, including health care, life and accident plans, emotional support resources for you and your family, legal services, and financial savings programs to help you plan for your future. We support professional and personal growth through educational assistance and provide access to various discounts and perks to enhance your overall quality of life.
If you want to help us build knowledge and solve big problems, let's talk.
NetApp is bringing its industry leading, long-proven, enterprise-class data storage technologies into world's biggest public clouds and the simplicity & flexibility of cloud into customers' data centers. To realize the mission, we are developing a portfolio of cloud-led, data-centric storage platforms and services to help the world's leading organizations harness their data in new and interesting ways.
Our team is incubating new products that leverage the best-of-breed cloud-native managed services. We are creating a data-centric platform that will enable our partners and customers to create new and innovative data services through an API-first approach. This will foster rapid innovation in NetApp's product ecosystem and will enable data management across edge, core datacenter and cloud. Our team operates as a startup within the larger NetApp organization
We're looking for smart, growth-minded developers who take ownership and thrive in a fast-paced environment. In this R&D role at NetApp, you'll collaborate on design, implement solutions as per architecture, and stay focused on performance, scale, security, and cost.
**Job Requirements**
+ Highly recommended to have exposure to integrations with SIEM/ SOAR of vendors like Splunk or cloud solutions like Azure Sentinel.
+ Thorough understanding and experience with building data-centric full-stack SaaS applications on at least one of the major hyper-scaler cloud providers (AWS, Microsoft Azure or Google Cloud Platform).
+ Understanding of design, architecture principles and best practices in cloud, that include cloud health monitoring, capacity metering, billing.
+ Proficient in one or more of: Python, NodeJS, TypeScript, C++.
+ Experience using and implementing REST API and/ or GraphQL.
+ Preference to hands-on expertise with serverless technologies and asynchronous programming.
+ Experience using NoSQL databases (such as, DynamoDB). Working knowledge with a graph database would be an added plus.
+ Experience with CI build systems and automated testing.
+ Experience using infrastructure-as-code, such as Cloud Formation stack or Terraform.
+ Strong understanding of algorithms and data structures.
+ Sound systems constructions knowledge using databases, caching, scaling techniques, failure models, load balancers, networking etc.
+ Work in a team of engineers responsible for all phases of software development life cycle.
+ Work in NetApp office for the most part with flexibility of remote working
**Education**
+ B.E./ B-Tech or M.S. in Computer Science or related technical field.
+ 4+ years of relevant experience and must be hands-on with coding.
At NetApp, we embrace a hybrid working environment designed to strengthen connection, collaboration, and culture for all employees. This means that most roles will have some level of in-office and/or in-person expectations, which will be shared during the recruitment process.
**Equal Opportunity Employer:**
NetApp is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all laws that prohibit employment discrimination based on age, race, color, gender, sexual orientation, gender identity, national origin, religion, disability or genetic information, pregnancy, and any protected classification.
**Why NetApp?**
We are all about helping customers turn challenges into business opportunity. It starts with bringing new thinking to age-old problems, like how to use data most effectively to run better - but also to innovate. We tailor our approach to the customer's unique needs with a combination of fresh thinking and proven approaches.
We enable a healthy work-life balance. Our volunteer time off program is best in class, offering employees 40 hours of paid time off each year to volunteer with their favourite organizations. We provide comprehensive benefits, including health care, life and accident plans, emotional support resources for you and your family, legal services, and financial savings programs to help you plan for your future. We support professional and personal growth through educational assistance and provide access to various discounts and perks to enhance your overall quality of life.
If you want to help us build knowledge and solve big problems, let's talk.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Siem Jobs in India !
6
Security Consultant-SIEM IR
Mumbai, Maharashtra
IBM
Posted 2 days ago
Job Viewed
Job Description
**Introduction**
A Technical Support Representatives at IBM is a front-line position supporting our products and making sure they are at their best for our customers. With over 100 years in technology, IBM has built a strong reputation of quality service and this role ensures we continue to deliver on that promise. If you enjoy helping people with technical issue, you'll love your career at IBM.
**Your role and responsibilities**
* Provide technical inputs for monthly customer service review reports and contribute to the creation of Service Improvement Plans.
* Monitor ticket queues, ensuring timely updates and comprehensive closure summaries.
* Apply expertise in Incident, Change, Problem, Service Request, and Configuration Management Processes.
* Manage, monitor, resolve, and report network security incidents involving equipment deployed across multiple client locations in India.
* Conduct daily incident analysis and publish reports to enhance transparency and security oversight.
* Maintain compliance with security policies and processes while striving for continuous improvement.
* Analyze key security metrics and escalate anomalies to appropriate teams.
* Operate in a 24/7 SOC environment to meet client requirements for cybersecurity monitoring and response.
**Required technical and professional expertise**
* Minimum 2+ years of experience in SIEM with platforms like QRadar, ArcSight, or Splunk for security monitoring.
* Proficiency in Incident Response, handling security events through SOC channels (SIEM, Tickets, Email, Phone).
* Strong knowledge of threat intelligence, attack patterns, and security incident handling workflows.
* Expertise in threat modeling, use case development, and security policy review.
* Ability to triage, investigate, and escalate security incidents based on severity and impact.
**Preferred technical and professional experience**
* OEM Certified SOAR Specialist + CEH certification preferred.
* Hands-on experience with Security Orchestration, Automation, and Response (SOAR) technologies.
* Ability to work independently, with a creative and proactive approach to security challenges.
* Strong time management and adaptability skills in fast-paced security environments.
* Exceptional interpersonal and teamwork skills to ensure smooth collaboration.
* Commitment to continuous learning through workshops, certifications, and industry publications.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
A Technical Support Representatives at IBM is a front-line position supporting our products and making sure they are at their best for our customers. With over 100 years in technology, IBM has built a strong reputation of quality service and this role ensures we continue to deliver on that promise. If you enjoy helping people with technical issue, you'll love your career at IBM.
**Your role and responsibilities**
* Provide technical inputs for monthly customer service review reports and contribute to the creation of Service Improvement Plans.
* Monitor ticket queues, ensuring timely updates and comprehensive closure summaries.
* Apply expertise in Incident, Change, Problem, Service Request, and Configuration Management Processes.
* Manage, monitor, resolve, and report network security incidents involving equipment deployed across multiple client locations in India.
* Conduct daily incident analysis and publish reports to enhance transparency and security oversight.
* Maintain compliance with security policies and processes while striving for continuous improvement.
* Analyze key security metrics and escalate anomalies to appropriate teams.
* Operate in a 24/7 SOC environment to meet client requirements for cybersecurity monitoring and response.
**Required technical and professional expertise**
* Minimum 2+ years of experience in SIEM with platforms like QRadar, ArcSight, or Splunk for security monitoring.
* Proficiency in Incident Response, handling security events through SOC channels (SIEM, Tickets, Email, Phone).
* Strong knowledge of threat intelligence, attack patterns, and security incident handling workflows.
* Expertise in threat modeling, use case development, and security policy review.
* Ability to triage, investigate, and escalate security incidents based on severity and impact.
**Preferred technical and professional experience**
* OEM Certified SOAR Specialist + CEH certification preferred.
* Hands-on experience with Security Orchestration, Automation, and Response (SOAR) technologies.
* Ability to work independently, with a creative and proactive approach to security challenges.
* Strong time management and adaptability skills in fast-paced security environments.
* Exceptional interpersonal and teamwork skills to ensure smooth collaboration.
* Commitment to continuous learning through workshops, certifications, and industry publications.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
This advertiser has chosen not to accept applicants from your region.
7
SIEM Architect Engineering Lead
Greater Noida, Uttar Pradesh
Kyndryl
Posted 2 days ago
Job Viewed
Job Description
**Who We Are**
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
**The Role**
Kyndryl's Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not just invested; we're committed. We're not just protecting data; we're empowering. Kyndryl is committed to making the world safer, not only by investing in state-of-the-art services and technologies but also by empowering underserved communities with essential cyber skills.
When you walk through our doors, you're not only joining a team but you're also becoming part of a legacy. Welcome to Kyndryl, where Cybersecurity isn't just a job - it's a passion; a commitment to designing, running, and managing the most modern and reliable technology infrastructure that the world depends on every day.
Join us as a Cybersecurity Infrastructure Professional, where you'll be entrusted with the crucial task of maintaining and enhancing the infrastructure that is the backbone of our cybersecurity operations for our Fortune 500 clients. You'll be responsible for the orchestration of infrastructure, keeping our systems protected from the relentless advances of physical and cyber adversaries.
Your vigilance and technical expertise will be the shield that safeguards our computer systems, networks, and invaluable data from the threat of unauthorized access, theft, damage, and other malicious activities. Your domain will revolve around preserving the integrity of an IT infrastructure, the security of networks, and the sanctity of data.
If you have a passion for cybersecurity and are looking for a role that combines cutting-edge technology with the thrill of safeguarding critical assets, then this role is your gateway to the world of cybersecurity heroism. Join us at Kyndryl, and let's build the future of digital security together.
Your Future at Kyndryl
When you join Kyndryl, you're not just joining a company - you're entering a space of opportunities. Our partnerships with industry alliances and vendors mean you'll have access to skilling and certification programs needed to excel in Security & Resiliency, while simultaneously supporting your personal growth. Whether you envision your career path as a technical leader within cybersecurity or transition into other technical, consulting, or go-to-market roles - we're invested in your journey. .
**Who You Are**
Who You Are
You're good at what you do and possess the required experience to prove it. However, equally as important - you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused - someone who prioritizes customer success in their work. And finally, you're open and borderless - naturally inclusive in how you work with others.
Required Skills and Experience
+ Having 8+ yers of experience in SIEM Engineering Manager is a senior leadership role within the Cyber Defense Center (CDC) responsible for the technical direction, operational governance, and delivery assurance of SIEM and SOAR capabilities.
+ This role bridges engineering, automation, and AI innovation to support a self-driving, SLA-bound, and AI-augmented SOC.
+ Lead a cross-functional team of SIEM Engineers, SOAR Developers, Automation Leads, Content Writers, and GenAI Developers
+ Define and track delivery KPIs, SLAs, and transformation milestones across all engineering functions
+ Ensure 24x7 operational readiness and L3-level support coverage, including weekends
+ Ensure ingestion pipelines, correlation rules, and detection logic are aligned with threat models and compliance requirements
+ Govern platform health, scalability, and integration with XDR, DLP, and EDR tools
+ Collaborate with the Automation Lead to drive hyper-automation and reduce MTTR through intelligent workflows
+ Ensure playbooks are modular, scalable, and aligned with incident response procedures
+ Guide the GenAI Developer in embedding AI agents into SOC workflows for predictive analytics, RCA generation, and incident summarization
+ Oversee the Content Writer in documenting use cases, playbooks, and detection logic
+ Promote the use of Copilot prompts and KQL-based automation in Smart L2 operations
+ Participate in governance forums and transformation workshops with client stakeholders
+ Support audit, compliance, and risk management initiatives by ensuring traceability and documentation of all engineering activities
+ Act as an escalation point for critical incidents and influence OEMs for rapid resolution
Preferred Skills and Experience
+ -Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or other related fields
+ -Experience with workload, server, network architectures and associated security controls
**Being You**
Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we're not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you - and everyone next to you - the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That's the Kyndryl Way.
**What You Can Expect**
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter - wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
**Get Referred!**
If you know someone that works at Kyndryl, when asked 'How Did You Hear About Us' during the application process, select 'Employee Referral' and enter your contact's Kyndryl email address.
Kyndryl is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. Kyndryl is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
**The Role**
Kyndryl's Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not just invested; we're committed. We're not just protecting data; we're empowering. Kyndryl is committed to making the world safer, not only by investing in state-of-the-art services and technologies but also by empowering underserved communities with essential cyber skills.
When you walk through our doors, you're not only joining a team but you're also becoming part of a legacy. Welcome to Kyndryl, where Cybersecurity isn't just a job - it's a passion; a commitment to designing, running, and managing the most modern and reliable technology infrastructure that the world depends on every day.
Join us as a Cybersecurity Infrastructure Professional, where you'll be entrusted with the crucial task of maintaining and enhancing the infrastructure that is the backbone of our cybersecurity operations for our Fortune 500 clients. You'll be responsible for the orchestration of infrastructure, keeping our systems protected from the relentless advances of physical and cyber adversaries.
Your vigilance and technical expertise will be the shield that safeguards our computer systems, networks, and invaluable data from the threat of unauthorized access, theft, damage, and other malicious activities. Your domain will revolve around preserving the integrity of an IT infrastructure, the security of networks, and the sanctity of data.
If you have a passion for cybersecurity and are looking for a role that combines cutting-edge technology with the thrill of safeguarding critical assets, then this role is your gateway to the world of cybersecurity heroism. Join us at Kyndryl, and let's build the future of digital security together.
Your Future at Kyndryl
When you join Kyndryl, you're not just joining a company - you're entering a space of opportunities. Our partnerships with industry alliances and vendors mean you'll have access to skilling and certification programs needed to excel in Security & Resiliency, while simultaneously supporting your personal growth. Whether you envision your career path as a technical leader within cybersecurity or transition into other technical, consulting, or go-to-market roles - we're invested in your journey. .
**Who You Are**
Who You Are
You're good at what you do and possess the required experience to prove it. However, equally as important - you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused - someone who prioritizes customer success in their work. And finally, you're open and borderless - naturally inclusive in how you work with others.
Required Skills and Experience
+ Having 8+ yers of experience in SIEM Engineering Manager is a senior leadership role within the Cyber Defense Center (CDC) responsible for the technical direction, operational governance, and delivery assurance of SIEM and SOAR capabilities.
+ This role bridges engineering, automation, and AI innovation to support a self-driving, SLA-bound, and AI-augmented SOC.
+ Lead a cross-functional team of SIEM Engineers, SOAR Developers, Automation Leads, Content Writers, and GenAI Developers
+ Define and track delivery KPIs, SLAs, and transformation milestones across all engineering functions
+ Ensure 24x7 operational readiness and L3-level support coverage, including weekends
+ Ensure ingestion pipelines, correlation rules, and detection logic are aligned with threat models and compliance requirements
+ Govern platform health, scalability, and integration with XDR, DLP, and EDR tools
+ Collaborate with the Automation Lead to drive hyper-automation and reduce MTTR through intelligent workflows
+ Ensure playbooks are modular, scalable, and aligned with incident response procedures
+ Guide the GenAI Developer in embedding AI agents into SOC workflows for predictive analytics, RCA generation, and incident summarization
+ Oversee the Content Writer in documenting use cases, playbooks, and detection logic
+ Promote the use of Copilot prompts and KQL-based automation in Smart L2 operations
+ Participate in governance forums and transformation workshops with client stakeholders
+ Support audit, compliance, and risk management initiatives by ensuring traceability and documentation of all engineering activities
+ Act as an escalation point for critical incidents and influence OEMs for rapid resolution
Preferred Skills and Experience
+ -Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or other related fields
+ -Experience with workload, server, network architectures and associated security controls
**Being You**
Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we're not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you - and everyone next to you - the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That's the Kyndryl Way.
**What You Can Expect**
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter - wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
**Get Referred!**
If you know someone that works at Kyndryl, when asked 'How Did You Hear About Us' during the application process, select 'Employee Referral' and enter your contact's Kyndryl email address.
Kyndryl is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. Kyndryl is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
This advertiser has chosen not to accept applicants from your region.
8
SIEM Admin _ Hyderabad & Mumbai
Mumbai, Maharashtra
Tata Communications
Posted 6 days ago
Job Viewed
Job Description
We are hiring for SIEM Admin L2 & L3.
Experience: 5+ Years
Location: Mumbai & Hyderabad
Work Mode: Work from Office
JD:
This is a core technical IC role which requires candidate to be hands on and ability to deliver the below tasks independently.
- Ownership of SIEM platform in terms of administration and management ( should be currently performing this role)
- Ensuring platform and service uptime
- Efficient management of the platform to ensure proper performance.
- Upgrade and updates (KBs)/ patch as per OEM
- Platform capacity management
- Administration and management of underlying Infrastructure Layer
- Log Source Integration to include development of custom parsers for non-supported log sources
- Integration with other platforms like Threat Intelligence
- Configuration of SOAR plugins
- Advanced troubleshooting of the SIEM platform
- Problem management. Working closely with OEM
- Configuration of rules reports and dashboards based on inputs from monitoring team.
- Documentation of RCAs for major incidents
- Other skills required
- Ability to interact and manage customer stakeholders in the context of platform management.
- Good team working skills and communication.
- Technology and skills
- SIEM: LogRhythm OR other industry leading SIEM platforms
- SOAR: SIEM native of any third party
- Threat Intelligence and Brand Monitoring (Cyble, IzooLogic)
- ISTM tools - Everest is preferred or any other industry leading product.
- Scripting: Regex is mandatory.
- OS: Windows and Linux (intermediate skills)
- Good knowledge of security domain is mandatory
- Working Window
- Should be flexible to work in shifts and on demand for any weekend activities
- Experience / Skills/Qualifications
- Education Qualification – B.E/B.Tech/Msc/MCA/M.Tech/Bsc/BCA
- Certifications
- CISSP or CISM is preferred.
This advertiser has chosen not to accept applicants from your region.
9