Senior SOC SME | 12 To 18 Years | PAN INDIA
Capgemini
India
Posted on Saturday, August 31, 2024
Job Description
- Monitoring Security Information and Event Management (SIEM) platform for security alerts, preferably Splunk Enterprise Security.
- Experience with Banking & Finance Customers.
- Providing metrics and reports around security monitoring by designing dashboards for asset owners and management consumption. Leveraging existing technologies within the organization to expand the scope of coverage of the security monitoring service.
- Development of Data Dictionaries for log sources to confirm which fields and values are needed or useful for Security Monitoring.
- Review of available logs to confirm there are adequate quantities and content to usefully provide Security Monitoring.
- Triage SIEM alerts to determine False Positive, Incident, or Technology Misconfiguration.
- Perform research at the request of Incident Response teams.
Primary Skills
- Splunk
- Incident Response.
Secondary Skills
- Independent with proven analytical and project management skills.