Track Lead - Security Analysis, SIEM

Job Summary

Job Summary : SIEM Specialist SIEM on boarding (JD): Role Overview The SIEM Onboarding Engineer operates as a mid-level technical specialist responsible for the end-to-end data ingestion lifecycle across our core security analytics platforms, specifically focusing on Splunk, Microsoft Sentinel, and Google Sec Ops (Chronicle) . You will act as the critical link between infrastructure teams and the Security Operations Center (SOC), ensuring that security logs from cloud environments, operating systems, networks, and custom business applications are seamlessly collected, normalized, and optimized for threat detection.

Job Description : Professional Skills\\r\\n• Ability to independently trace and resolve broken data flows across hybrid networks and firewalled zones.\\r\\n• Skill in collaborating directly with DevOps, Cloud, and IT infrastructure teams to enforce corporate security logging policies.\\r\\n• A meticulous, detail-oriented approach to evaluating data schemas and ensuring long-term data quality.\\r\\n

Key Responsibilities

Job Responsibilities : Key Responsibilities • Deploy and manage SIEM infrastructure, agents, heavy forwarders, log collectors, and API integrations to onboard diverse log sources.

• Build and maintain custom data parsers and regular expressions (Regex) to map log fields into standard schemas (e.g., Splunk CIM, Sentinel ASIM, or Google Sec Ops UDM).
• Configure data filtering, masking, and routing rules to optimize SIEM indexing volume, manage licensing costs, and prevent pipeline drops.

Skill Requirements

Skill Requirement : Technical Qualifications • Experience: 3 to 5 years of dedicated experience in security engineering, log management, or SIEM administration.

• Multi-SIEM Competency: Hands-on engineering and administrative experience with at least two of the following: Splunk Enterprise/Cloud, Microsoft Sentinel, or Google Sec Ops (Chronicle).
• Deep familiarity with Syslog-ng/Rsyslog, Windows Event Forwarding (WEF), HTTP Event Collectors (HEC), and REST API log extraction.
• Strong proficiency in writing complex Regular Expressions (Regex) and automation scripts (Python, PowerShell, or Bash) to manipulate unstructured log data.
• Solid understanding of enterprise environments, including Linux/Windows OS, network architecture (firewalls, proxies), and cloud logs (AWS CloudTrail, Azure Activity, GCP Audit) s

Other Requirements

Other Requirement : Professional Skills • Ability to independently trace and resolve broken data flows across hybrid networks and firewalled zones.

• Skill in collaborating directly with DevOps, Cloud, and IT infrastructure teams to enforce corporate security logging policies.
• A meticulous, detail-oriented approach to evaluating data schemas and ensuring long-term data quality.