Apply now »

SIEM Admin

Publication Date:  May 25, 2024
Ref. No:  510902
Location: 

Bangalore, India, IN, 560048 Bangalore, India, IN, 560048 Bangalore, IN, 560048

Eviden, part of the Atos Group, with an annual revenue of circa € 5 billion is a global leader in data-driven, trusted and sustainable digital transformation. As a next generation digital business with worldwide leading positions in digital, cloud, data, advanced computing and security, it brings deep expertise for all industries in more than 47 countries. By uniting unique high-end technologies across the full digital continuum with 53,000 world-class talents, Eviden expands the possibilities of data and technology, now and for generations to come.

Title: SIEM Admin

Location: Bangalore

Experience: 5-8 years

Education: Bachelor’s degree in Electronics/Electrical engineering/Computer Engineering (BE/B-Tech)

 

Ideal Candidate:

  • Team looking for candidate who worked on any SIEM tool Experience with for Any tool in SIEM & SIEM Architecture & SIEM health check.
  • Current Project was on ArcSight and be migrated to Securonix (Anyone with Securonix experience will be given preference)

 

Required Skills: 

  • Implementation experience on SIEM Components
  • Logger & Connector.
  • Integrate log source to SIEM.
  • Parsing, Troubleshooting logging issue.
  • Architecture activity, SIEM health check
  • Ready to work on 24/7 shifts to support client requirement.

 

Role and Responsibilities

  • Deployment of SIEM in customer environment.
  • Audit the SIEM in the customer environment.
  • Troubleshoot issues regarding SIEM and other SOC tools. Build of use case for the customer. Data archiving and backup and data purging configuration as per need and compliance.
  • Raising change management tickets for SOC Administration activities like Patch upgrade for SIEM, onboarding log sources etc.
  • Co-ordination with L2 and SOC Monitoring team for troubleshooting issues and highlighting them to clients for further resolution and escalation.
  • High ethics, ability to protect confidential information.
  • Troubleshooting at device and connector/agent end to fix the anomaly reported by other team and observed on day to day basis.
  • Building of incident reports, advisories and review if SLA has been met for Incident alerting and Incident closure.
  • Update and maintain SOC knowledge base for new security incidents and docs. Creation of daily status report sheet and submit to SOC manager for review.
  • Review advisories and make necessary detection measures.
  • Provide analysis and trending of security log data from a large number of security devices.
  • Troubleshooting non-reporting devices fix and maintain device status. Working with OEM (Tool support) in a way to resolve the issue or incident raised.
  • Administration of Windows and Unix servers. Building Parser for the SIEM using regex.
  • Ready to work on 24/7 shifts to support client requirement.

 

Our Offering:

  • Competitive salary package
  • Leave Policies: 10 Days of Public Holiday (Includes 2 days optional) & 22 days of Earned Leave (EL) & 11 days for sick or caregiving leave.
  • Benefit Plans (Insurance) – Medical & Life & Accidental & EDLI

 

#Eviden

 

 

Let’s grow together.

Apply now »