Group SIEM Engineer
Bangalore, Karnataka, India
⚠️ We'll shut down after Aug 1st - try foo🦍 for all jobs in tech ⚠️
Applications have closed
DP World
DP World is a world leader in logistics management services. We ensure future viability of global international trade & prosperity of communities around the world
KEY ACCOUNTABILITIES
- Administer and maintain SIEM and SOAR platforms, including configuration, tuning, and updates.
- Onboarding of Log sources into SIEM platform, enhancing our security monitoring capabilities.
- Develop and implement correlation rules to detect potential security threats as per threat landscape.
- Design, implement, and maintain SOAR solutions to automate incident response workflows.
- Collaborate with cross-functional teams to integrate SOAR with existing security tools and processes.
- Develop playbooks for incident response and ensure regular testing and updates.
- Provide recommendation for Security Use-cases and SOAR Playbooks creation and optimization for any new/existing systems.
- Analyse and integrate threat intelligence data in SIEM and SOAR to enhance detection capabilities and incident response.
- Stay current with emerging threats and vulnerabilities, integrating relevant intelligence into security practices.
- Create and maintain documentation for SIEM and SOAR configurations, procedures, and playbooks.
- Generate regular reports on security incidents, trends, and metrics for management review.
- Provide training and guidance to team members on SIEM and SOAR best practices.
- Document all incidents, investigations, and analysis activities accurately and thoroughly.
OTHER
- Act as an ambassador for DP World at all times when working; promoting and demonstrating positive behaviours in harmony with DP World’s Principles, values and culture; ensuring the highest level of safety is applied in all activities; understanding and following DP World’s Code of Conduct and Ethics policies.
- Perform other related duties as assigned.
QUALIFICATIONS, EXPERIENCE AND SKILLS
Knowledge and Experience
- Bachelor’s Degree in Computer Science or equivalent.
- Should have 8 -10 years of experience in IT Security with at least 6 years’ experience in managing SIEM and SOAR solutions including logs onboarding and creation of automated playbooks.
- Technical and hands-on experience across Cyber Security and technology domains.
- Strong hands-On Experience on SIEM and SOAR Solutions.
- Understanding of security frameworks and compliance regulations.
- Proficiency in scripting languages (e.g., Python, PowerShell) for automation purposes.
- Excellent analytical and problem-solving skills, with the ability to communicate technical concepts to non-technical stakeholders.
- Strong understanding of the Cyber Kill Chain, pervasive threats attack methods and remediation.
- Industry recognized professional certifications CISSP, GIAC, NSE or Microsoft Azure.
- Good understanding in E-commerce, logistics, supply chain & port operations applications will be added advantage.
Soft Skills
- Sound analytical and intellectual capabilities.
- Excellent time management and organizational skills.
- Decision-making abilities.
- Team player and conflict management skills.
- Ability to multi-task, prioritize, coordinate, and work well under pressure to meet deadlines.
- Strong interpersonal and communication skills ability to work in a team environment.
- Cultural awareness.
- Must possess Excellent Reporting Skills.
Technical Skills
- Knowledge of Security information and event management (SIEM) and Security Orchestration and Automation (SOAR) solutions.
- Hands-on experience with Azure Sentinel SIEM Solution and FortiSOAR platform is desired.
- Experience with log onboarding on SIEM solution.
- Experience with automated playbook creation on SOAR Platform.
#LI-AA6
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Category:
Security Engineering Jobs
Tags: Automation Azure CISSP Compliance Computer Science Cyber Kill Chain E-commerce GIAC Incident response Monitoring PowerShell Python Scripting Sentinel SIEM SOAR Threat intelligence Vulnerabilities
Region:
Asia/Pacific
Country:
India
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Senior Cybersecurity Engineer jobsSenior Security Analyst jobsSenior Information Security Analyst jobsSystems Administrator jobsSenior Cloud Security Engineer jobsInformation System Security Officer jobsCyber Security Specialist jobsSecurity Operations Engineer jobsSenior Product Security Engineer jobsInformation Security Manager jobsSenior Network Security Engineer jobsInformation System Security Officer (ISSO) jobsSenior Information Security Engineer jobsSecurity Specialist jobsSecurity Consultant jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsInformation Systems Security Engineer jobsSenior Software Engineer jobsNetwork Engineer jobsIT Security Engineer jobsCyber Threat Intelligence Analyst jobsCybersecurity Specialist jobsSecurity Operations Analyst jobsSoftware Engineer jobs
EDR jobsSecurity assessment jobsBash jobsEncryption jobsTS/SCI jobsThreat detection jobsSDLC jobsRMF jobsTerraform jobsIDS jobsSplunk jobsSQL jobsITIL jobsMalware jobsTop Secret jobsCompTIA jobsIPS jobsForensics jobsFinance jobsSOC 2 jobsOWASP jobsDocker jobsActive Directory jobsGIAC jobsClearance Required jobs
CRISC jobsOSCP jobsMITRE ATT&CK jobsDoDD 8570 jobsHIPAA jobsIntrusion detection jobsTCP/IP jobsVPN jobsCCSP jobsZero Trust jobsSOAR jobsDNS jobsIT infrastructure jobsJavaScript jobsAnsible jobsUNIX jobsNIST 800-53 jobsJira jobsKPIs jobsIndustrial jobsBanking jobsMachine Learning jobsSANS jobsData Analytics jobsSOX jobs