Manager - Google Security Operations (SecOps) SIEM
Deloitte Shared Services India
Mumbai, Maharashtra, India · पूर्णवेळ
अर्ज करणारे पहिले व्हा
- अनुभव
- ७+ वर्षे
- पगार
- —
- रिक्त जागा
- 1
- पोस्ट केले
- ७ तासांपूर्वी
- कार्य मोड
- कार्यालयात
- शिक्षण
- कोणताही पदवीधर
- पात्रता
- B.C.A. in any specialization, Any Graduate, B.Tech / B.E. in any specialization
- सारांश
- अर्ज करणे आवश्यक आहे
तुम्ही जिथे काम कराल
नोकरीचे वर्णन
About the Role
We are seeking an experienced cybersecurity professional with over 7.5 years of expertise, particularly in Google SecOps and SIEM engineering. The candidate will be responsible for designing, deploying, and managing SIEM solutions, primarily focusing on Google SecOps. Deep knowledge in log management, event correlation, network security tools, operating systems, and cloud platforms is essential. The role demands hands-on experience with scripting languages and certifications related to SIEM and security domains.
Key Responsibilities
- Architect, configure, and maintain Google SecOps SIEM platforms.
- Onboard diverse log sources including servers, network devices, cloud environments, applications, and security tools.
- Create and refine correlation rules, alerts, dashboards, and reports to enhance threat detection.
- Optimize SIEM performance to minimize false positives.
- Support SOC teams in incident detection, analysis, and response activities.
- Integrate SIEM with SOAR tools, Endpoint Detection and Response (EDR), Identity and Access Management (IAM), cloud security operations, and threat intelligence feeds.
- Develop use cases aligned with the MITRE ATT&CK framework.
- Ensure compliance with security regulations and standards such as ISO 27001, SOC 2, PCI-DSS, and HIPAA.
- Troubleshoot SIEM ingestion, parsing, and data integrity challenges.
- Automate routine processes using scripting languages including Python, PowerShell, and Bash.
- Participate in security audits, threat hunting, and efforts to enhance security operations continuously.
- Document SIEM architecture, procedures, and operational runbooks for knowledge management.
Candidate Requirements
- Minimum of 7.5 years in cybersecurity, with a strong emphasis on Google SecOps SIEM engineering.
- Proficiency with at least one major SIEM platform.
- Solid understanding of log management, event correlation, network security tools (Firewalls, IDS/IPS, VPNs), and operating systems (Linux, Windows).
- Experience with cloud platforms including AWS, Azure, and Google Cloud Platform.
- Hands-on skills in regex, log parsing, and data normalization.
- Knowledge of threat intelligence and attack methodologies, particularly MITRE ATT&CK.
- Competency in scripting using Python, PowerShell, and shell scripting.
- Familiarity with SOC operations and incident response processes.
- Certifications in SIEM (such as Google SecOps, Splunk Certified Architect, QRadar Administration, Azure Sentinel) and security certifications like CEH, GCED, GCIH, CISSP are required.
- Understanding of SOAR platforms and automation techniques.
- Exposure to DevSecOps and security integration in CI/CD pipelines.
- Educational qualifications include Bachelor's or Master's degree, BCA, or equivalent fields.