SIEM Sentinel/Securonix

Greetings from TCS!!Skill: SIEM Sentinel/SecuronixTechnical Skill Set: SEIM, Securonix administration, Sentinel, ImplementationExperience: 4-15 yearsLocation: Bangalore, Pune, KolkataJob Description:SIEM knowledge with overall all the components and lifecycle of the system - Including below pointersImplementation of new SIEM components based on requirementBasics of SOC operations operating modelSOC Content Development theoretical knowledgeOOTB Data Connector and ParserCustom Parser creation – RegexTypes of ingestion mechanism in SAAS or on-premise - pull, push , API, Agent based, Agentless, multi-file based, single file based etc..Event filtering mechanism using nxlog or any other mechanism based on tools in placeEnterprise SIEM Architect exposure. Multiple SIEM deployment experience. SOC Domain Specialized.Excellent knowledge of one of the SIEM products Securonix, Sentinel.Excellent understanding and proven hands-on experience in SIEM concepts such as correlation, aggregation, normalization, and parsingExperience with Incident response and Security Operations Center operationsExperience with deploying and managing a large SIEM deploymentExcellent understanding of enterprise logging standards, with a focus on application logging5 years of experience with Securonix, Sentinel SIEM systemsExcellent knowledge of adversary tactics, techniques and procedures (TTPs) and MITRE ATT&ACK FrameworkExcellent understanding of regular expressions, development of custom/flex ParsersExcellent Python and Unix Shell scripting skillsKnowledge on overall GCP, AWS, Azure Cloud infrastructureSolid understanding of events, related fields in log records and alerts reported by various data sources such as Windows/Unix systems, IDS/IPS, AV, HIDS/HIPS, WAFs, firewalls, and web proxies

Apply Now