Sentinel L3

Job role

We are currently recruiting for an exciting role as Sentinel L3 with 6 to 9 years of experience from Bengaluru location.The role involves working on playbooks and log source integration.

• Install and maintain the different platforms used by the SOC: SIEM, SOAR, Sandbox, Threat Intelligence broker, NDR sensors
• Ensure proper health monitoring of the SOC platforms
• Maintain the automation pipeline to deliver these components in an Infrastructure-as-Code model
• Onboarding new data sources into the SOC and providing on-going tuning enhancements.
• Provide guidance in configuring log sources
• Perform data filtering and normalization
• Creation of rules and dashboards in the SIEM platform
• Tuning of the detections based on SOC input and detection noise
• Creation and maintenance of playbooks and automations for the SOAR platform
• Write custom integrations between platforms to support SOC processes

Your profile

• 6 to 9 years of experience in a similar role (SIEM Engineering)
• Senior level experience in data onboarding into SIEM platforms (Sentinel preferred)
• Good understanding of log collection methodologies and aggregation techniques such as Syslog-NG, Logstash, Windows Event Forwarding
• Senior level experience in Log analytics and the Kusto Query language (KQL)
• Experience in creation of detection rules and dashboards in SIEM platforms
• Experience in the creation of security automations (PaloAlto XSOAR, Azure LogicApp/Functions preferred)
• Working knowledge of Python and Powershell programming
• Experience in both Windows and Linux system administration
• Knowledge of Devops principles and tools (Azure Devops, git, ansible, terraform)

What you'll love about working here

• You can shape your career with us. We offer a range of career paths and internal opportunities within Capgemini group.
• You will also get personalized career guidance from our leaders.
• You will get comprehensive wellness benefits including health checks, telemedicine, insurance with top-ups, elder care, partner coverage or new parent support via flexible work.
• At Capgemini, you can work on cutting-edge projects in tech and engineering with industry leaders or create solutions to overcome societal and environmental challenges.