Job Description

Job Description

We are seeking a skilled SIEM Platform Engineer responsible for the administration, integration, optimization, and continuous improvement of the SIEM platform. The role involves log source on boarding, platform health monitoring, log review and ensuring high-quality security event visibility across the organization.

Key Responsibilities

• Administer and maintain SIEM infrastructure (e.g., QRadar / Splunk / Sentinel).

• Monitor SIEM health, performance, EPS utilization and storage.

• Perform system upgrades, patching and configuration changes.

• Manage backup and disaster recovery processes.

• Optimize system performance.

• Manage multi-tenant or distributed deployments (if applicable).

• On-board new log sources (e.g., Firewall, IDS/IPS, EDR, AD, Cloud, VPN, Applications, DB, etc.).

• Validate log parsing, normalization and event categorization.

• Configure log collection methods (e.g., Syslog, Win Collect, APIs, and Agents).

• Troubleshoot log flow issues and parsing errors.

• Maintain log source inventory and documentation.

• Perform daily log health checks and ingestion validation.

• Review raw logs to verify event accuracy.

• Analyse dropped events or unknown events.

• Experience any 3 security solutions deployed

͏

Deliver

		No
		Performance Parameter
		Measure
		1.
		100% adherence to SLA/ timelines

		Multiple cases of red time

		Zero customer escalation

		Client appreciation emails

͏

͏