Information Security Engineer (SIEM)

📋 Description

• Design, implement, and maintain the Splunk platform and ES.
• Manage forwarder/indexer architecture, capacity, and load balancing.
• Ensure SIEM ingests data from key systems with cross-team collaboration.
• Implement SIEM rules, dashboards, and reporting to identify risks.
• Integrate SIEM with SOAR, ticketing, and incident workflows.
• Respond to security incidents; perform root cause analysis and remediation.

🎯 Requirements

• Bachelor's degree in IT or related field; 3-5 years in IT security.
• Splunk Admin (Enterprise or Cloud) certification preferred.
• CISSP, CISM, SSCP, CCSP, or Security+ certifications.
• Experience with Splunk Cloud/Enterprise and Splunk ES; SPL proficiency and dashboards.
• Scripting, automation, and APIs; Windows, Linux, and macOS.
• ISO27001/NIST/CIS/PCI; SSO (SAML); encryption and key management.

🎁 Benefits

• Medical insurance for employee and family; INR coverage.
• Group Term & Group Personal Accident Insurance; INR coverage.
• 15 Privilege leaves; 6 Sick; 6 Casual; 26 weeks Maternity; Birthday off; paid holidays.
• Provident Fund and Gratuity.
• Employee Assistance Program and wellness initiatives.
• Growth and ongoing learning opportunities.