SIEM Administrator
- Thiruvananthapuram, Kerala
- Permanent
- Full-time
- Design, deploy, and manage SIEM tools (e.g., Innspark, LogRhythm, Splunk).
- Develop and maintain correlation rules, s, dashboards, and reports.
- Integrate logs from servers, network devices, cloud services, and applications.
- Troubleshoot log collection, parsing, normalization, and event correlation issues.
- Work with security teams to improve detection and response capabilities.
- Ensure SIEM configurations align with compliance and audit requirements.
- Perform routine SIEM maintenance (e.g., patching, upgrades, health checks).
- Create and maintain documentation for implementation, architecture, and operations.
- Participate in evaluating and testing new SIEM tools and features.
- Support incident response by providing relevant event data and insights.
- Bachelor’s degree in Computer Science, Information Security, or related field.
- 5+ years of hands-on experience with SIEM tools.
- Experience with Innspark, LogRhythm, or other SIEM platforms (e.g., Splunk, QRadar, ArcSight).
- Strong knowledge of log management and event normalization.
- Good understanding of cybersecurity concepts and incident response.
- Familiarity with Windows/Linux OS and network protocols.
- Scripting knowledge (e.g., Python, PowerShell) is a plus.
- Strong troubleshooting, analytical, and communication skills.
- Industry certifications (CEH, Security+, SSCP, or vendor-specific) are a plus.
- SIEM Tools (Innspark, LogRhythm, Splunk)
- Troubleshooting
- Log Management & Analysis
- Scripting (optional)
- Security Monitoring