Apply now »

Sentinel L3

Capgemini is an AI-powered global business and technology transformation partner, delivering tangible business value. We imagine the future of organizations and make it real with AI, technology and people. With our strong heritage of nearly 60 years, we are a responsible and diverse group of 420,000 team members in more than 50 countries. We deliver end-to-end services and solutions with our deep industry expertise and strong partner ecosystem, leveraging our capabilities across strategy, technology, design, engineering and business operations. The Group reported 2024 global revenues of €22.1 billion.
Make it real | www.capgemini.com

Job role

We are currently recruiting for an exciting role as Sentinel L3 with 6 to 9 years of experience from Bengaluru location.The role involves working on playbooks and log source integration.

  • Install and maintain the different platforms used by the SOC: SIEM, SOAR, Sandbox, Threat Intelligence broker, NDR sensors
  • Ensure proper health monitoring of the SOC platforms
  • Maintain the automation pipeline to deliver these components in an Infrastructure-as-Code model
  • Onboarding new data sources into the SOC and providing on-going tuning enhancements.
  • Provide guidance in configuring log sources
  • Perform data filtering and normalization
  • Creation of rules and dashboards in the SIEM platform
  • Tuning of the detections based on SOC input and detection noise
  • Creation and maintenance of playbooks and automations for the SOAR platform
  • Write custom integrations between platforms to support SOC processes

Your profile

  • 6 to 9 years of experience in a similar role (SIEM Engineering)
  • Senior level experience in data onboarding into SIEM platforms (Sentinel preferred)
  • Good understanding of log collection methodologies and aggregation techniques such as Syslog-NG, Logstash, Windows Event Forwarding
  • Senior level experience in Log analytics and the Kusto Query language (KQL)
  • Experience in creation of detection rules and dashboards in SIEM platforms
  • Experience in the creation of security automations (PaloAlto XSOAR, Azure LogicApp/Functions preferred)
  • Working knowledge of Python and Powershell programming
  • Experience in both Windows and Linux system administration
  • Knowledge of Devops principles and tools (Azure Devops, git, ansible, terraform)

What you'll love about working here

  • You can shape your career with us. We offer a range of career paths and internal opportunities within Capgemini group.
  • You will also get personalized career guidance from our leaders.
  • You will get comprehensive wellness benefits including health checks, telemedicine, insurance with top-ups, elder care, partner coverage or new parent support via flexible work.
  • At Capgemini, you can work on cutting-edge projects in tech and engineering with industry leaders or create solutions to overcome societal and environmental challenges.
Ref. code:  316256
Posted on:  19 Feb 2026
Experience Level:  Experienced Professionals
Contract Type:  Permanent
Location: 

Bangalore, IN

Brand:  Capgemini
Professional Community:  Cloud Infrastructure Management

Apply now »