Create Alert
Apply now »

Associate Lead Consultant - SIEM Solution Management Job

Date:  Apr 12, 2024
Job Requisition Id:  55355
Location: 

Hyderabad, TG, IN Hyderabad, IN

YASH Technologies is a leading technology integrator specializing in helping clients reimagine operating models, enhance competitiveness, optimize costs, foster exceptional stakeholder experiences, and drive business transformation.

 

At YASH, we’re a cluster of the brightest stars working with cutting-edge technologies. Our purpose is anchored in a single truth – bringing real positive changes in an increasingly virtual world and it drives us beyond generational gaps and disruptions of the future.

 

We are looking forward to hire SIEM Solution Management Professionals in the following areas :

 

Position Name: Azure Sentinel Admin

Description 

YASH is a Digital services enabler organization delivering vast portfolio of digital services to customers across the globe. Our topline services include Cybersecurity services. This role will be part of vibrant YASH’s Cybersecurity – Security Operations Team. 

We are looking for candidates who will embrace our Security strategy in the design, implementation and operations of Azure Sentinel with a focus on Azure. As an Azure Sentinel Administrator, you should have experience in all aspects of SIEM tools including estimating, designing, fine tuning, log source integration, threat hunting and automation. Attributes we will look for in our candidates include excellent technical and analytical skills, communication and flexibility, innovative thinking and problem solving.

In addition, this position is responsible for analyzing security vulnerabilities and determining if there is an attack surface and impact. The ideal candidate understands the complete implementation of a SIEM tool.  

Position – Azure Sentinel Admin                                                                                                                 Number – 1                                                                                                                                 Location –  Bangalore/ Pune / Indore

Total Experience – 8 -10 Years

How do you grow and be successful:

At YASH, we will offer all support to grow in your career. At the very beginning you will receive a deep knowledge on the current SOPs once you are fully onboarded into our Security Operations team. You will be measured on the positive contribution in delivering the SIEM services to our customers. Fluency will be measured on the goals such as improvement of cyber posture of customers through our Manage detect and respond services.

Our employees will have global exposure from day-1. We offer to learn multiple security domains through our mentored on-the-job training program. Aspiring candidates will reach to highest positions and make a global career.

Preferred Skills:

  • Minimum 8+ years of experience in developing use cases customized to the environment.
  • Work on Cloud SIEM project implementations for various customers in different locations, starting with estimating the SIEM configuration to successful deployment and fine tuning of the solution
  • Configure data digestion types and connectors.
  • Create incident categorization and threat management plan.
  • End to end operational knowledge of Azure Incident Management Process/SLAs.
  • Configure Sentinel Incidents, Workbooks, Hunt queries, Notebooks.
  • Support on-going development and troubleshooting of Azure Sentinel.
  • Advise and develop Azure Sentinel adoption migration roadmap for clients.
  • Analytic design and configuration of the events and logs being digested.
  • Preferred with experience on SOAR tools like IBM SOAR(Resilient), Splunk SOAR(Phantom) , Microsoft Sentinel SOAR, knowledge in Jupyter and logicApps or any other SOAR Tool.
  • In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc
  • Use Case Fine tuning and New Use case creation. Hands-on experience with Azure Sentinel/Kusto Query language preferred).
  • Azure Security Services for Vulnerability Assessment and Compliance practices analysis,
  • Develop, automate, and orchestrate tasks(playbooks) with logic apps based on certain events.
  • Tuning threat detection to minimize noise and amplify a signal.
  • Experience in SIEM/ SOAR & Playbook creation technologies understanding the log source integration. Responsible for integration review of standard and non-standard logs in SIEM
  • Provide support to the Security Operations Center (SOC) during incident response, event monitoring, and threat hunting activities.
  • Proficient in one or more of the following computer languages PowerShell, Bash ,Python & KQL to support cyber threat detection or reporting. Security API implementations can be considered as well.
  • Deep understanding of either MITRE Attack framework (MITRE preferred) or the Cyber Kill Chain
  • Experience in threat management.
  • Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix.
  • Knowledge of applications, databases, middleware to address security threats against the same.
  • Proficient in preparation of reports, dashboards and documentation.

Working knowledge

  • Passion for Cyber Security, being the basic ingredient of success.
  • Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives
  • Necessary soft-skills set to successfully understand, challenge and translate the business needs and communicate to the relevant parties with a structured and methodical approach to problem solving
  • You are a team player with good communication skills, proactive and highly motivated individual with a serious hands-on work ethic

Qualifications:

  • A bachelor's or master's degree in computer science, information technology 
  • Preferred Certifications: Azure Security Certifications, SIEM certifications

 

At YASH, you are empowered to create a career that will take you to where you want to go while working in an inclusive team environment. We leverage career-oriented skilling models and optimize our collective intelligence aided with technology for continuous learning, unlearning, and relearning at a rapid pace and scale.

 

Our Hyperlearning workplace is grounded upon four principles

  • Flexible work arrangements, Free spirit, and emotional positivity
  • Agile self-determination, trust, transparency, and open collaboration
  • All Support needed for the realization of business goals,
  • Stable employment with a great atmosphere and ethical corporate culture

Apply now »