This page was automatically translated and may contain errors. View in English.
Deloitte Shared Services India

Manager - Google Security Operations (SecOps) SIEM

Deloitte Shared Services India

Mumbai, Maharashtra, India · À temps plein

Soyez le premier à postuler

Expérience
7 ans et plus
Salaire
Ouvertures
1
Publié
il y a 7 heures
Mode de travail
Au bureau
Éducation
Tout diplômé
Admissibilité
B.C.A. in any specialization, Any Graduate, B.Tech / B.E. in any specialization
CV
Candidature requise

Votre lieu de travail

Description de l'emploi

About the Role

We are seeking an experienced cybersecurity professional with over 7.5 years of expertise, particularly in Google SecOps and SIEM engineering. The candidate will be responsible for designing, deploying, and managing SIEM solutions, primarily focusing on Google SecOps. Deep knowledge in log management, event correlation, network security tools, operating systems, and cloud platforms is essential. The role demands hands-on experience with scripting languages and certifications related to SIEM and security domains.

Key Responsibilities

  • Architect, configure, and maintain Google SecOps SIEM platforms.
  • Onboard diverse log sources including servers, network devices, cloud environments, applications, and security tools.
  • Create and refine correlation rules, alerts, dashboards, and reports to enhance threat detection.
  • Optimize SIEM performance to minimize false positives.
  • Support SOC teams in incident detection, analysis, and response activities.
  • Integrate SIEM with SOAR tools, Endpoint Detection and Response (EDR), Identity and Access Management (IAM), cloud security operations, and threat intelligence feeds.
  • Develop use cases aligned with the MITRE ATT&CK framework.
  • Ensure compliance with security regulations and standards such as ISO 27001, SOC 2, PCI-DSS, and HIPAA.
  • Troubleshoot SIEM ingestion, parsing, and data integrity challenges.
  • Automate routine processes using scripting languages including Python, PowerShell, and Bash.
  • Participate in security audits, threat hunting, and efforts to enhance security operations continuously.
  • Document SIEM architecture, procedures, and operational runbooks for knowledge management.

Candidate Requirements

  • Minimum of 7.5 years in cybersecurity, with a strong emphasis on Google SecOps SIEM engineering.
  • Proficiency with at least one major SIEM platform.
  • Solid understanding of log management, event correlation, network security tools (Firewalls, IDS/IPS, VPNs), and operating systems (Linux, Windows).
  • Experience with cloud platforms including AWS, Azure, and Google Cloud Platform.
  • Hands-on skills in regex, log parsing, and data normalization.
  • Knowledge of threat intelligence and attack methodologies, particularly MITRE ATT&CK.
  • Competency in scripting using Python, PowerShell, and shell scripting.
  • Familiarity with SOC operations and incident response processes.
  • Certifications in SIEM (such as Google SecOps, Splunk Certified Architect, QRadar Administration, Azure Sentinel) and security certifications like CEH, GCED, GCIH, CISSP are required.
  • Understanding of SOAR platforms and automation techniques.
  • Exposure to DevSecOps and security integration in CI/CD pipelines.
  • Educational qualifications include Bachelor's or Master's degree, BCA, or equivalent fields.

Laissez ce message si vous souhaitez une réponse — nous ne l'utiliserons à aucune autre fin.

Cliquez pour parcourir, glisser-déposer, ou coller une capture d'écran

PNG, JPG, GIF, MP4, WebM, MOV · 20 Mo maximum par fichier · Jusqu'à 5 fichiers

🤖
En ligne · Aide IA instantanée