Urgent job opening for SIEM L3 for leading IT consulting fiirm for Chennai location

Job Description:

SIEM : L3

• Strong knowledge and Minimum 10 years Hands on Experience in 3 or more areas of security like (Security Incident and Event Management (SIEM) Qradar along with SOAR & TIP: Q Radar / Vulnerability Assessment Scanner(VAS): Rapid 7 / Deception Technology).
• Experience in construction of SIEM content required to produce Content Outputs (e.g., filters, active lists, correlation rules, reports, report templates, queries, trends, variables)
• Experience in packet level analysis
• Experience in Threat Hunting
• Experience in Designing and deploying use cases for SIEM and other security devices.
• Continuously monitor security alerts and events to identify potential security incidents or threats.
• Develop and implement incident response plans to address security breaches and mitigate potential damage.
• Conduct regular vulnerability assessment and penetration testing to identify and remediate security weaknesses.
• Maintain documentation of security procedures, incident reports and security policies.
• Stay updated on the latest cybersecurity threats and trends to proactively defend against emerging threats.
• Manage and maintain security tools such as SIEM, DAM, VAS and Deception technology.
• Monitoring of Qradar SIEM and investigating/closing out offenses.
• Finetuning configurations of the security solutions/components obtaining optimum usage of the system as per the client requirement.
• Manage the Analytics, Trending and new use case creation, log source and SLA management & reporting.
• Creating custom rules and configurations to tailor the SIEM solution to the client specific security needs.

(NBA + SIEM + Perimeter Security / Should have managed a team of 20+ resources)

Diversity

Location: Chennai. Due to the nature of the rotational shift, please consider male candidates only 

RFP Criteria

Years of experience should match the mentioned tenure.

Education Criteria: MCA OR BE/B.Tech in Electrical/Electronics/CS/IT (Other Streams not considered).

Certification: At least one Security certification, PMP/ITIL Expert/CISA/CISM/CISSP OR Tool-Based Certification, should be completed within 30 days of onboarding.