Description:
Responsible for design , develop , TUT and support FUT for ETL jobs using SAP BODS in a migration / conversion from ECC to S4HANA project. Responsible for generating technical specifications / run books. Should aware of Mock cut overs to execute jobs and do a preload and post load validations.
Responsibilities
Description:
Responsible for design , develop , TUT and support FUT for ETL jobs using SAP BODS in a migration / conversion from ECC to S4HANA project. Responsible for generating technical specifications / run books. Should aware of Mock cut overs to execute jobs and do a preload and post load validations.
Salary : As per industry standard.
Industry :IT-Software / Software Services
Functional Area : IT Software - Application Programming , Maintenance
We are looking for an experienced SIEM Engineer with strong expertise in Splunk Administration, Engineering, and Microsoft Sentinel. The ideal candidate will be responsible for managing enterprise SIEM platforms, developing security monitoring use cases, supporting compliance requirements, and participating in SIEM migration initiatives.
Key Responsibilities
Splunk Administration & Engineering
Administer and maintain Splunk Enterprise and Splunk Cloud environments.
Configure, deploy, and manage Universal Forwarders and Heavy Forwarders across Windows and Linux platforms.
Manage Splunk indexing, search heads, data inputs, data models, dashboards, alerts, reports, and correlation searches.
Implement and maintain Common Information Model (CIM) normalization.
Monitor data ingestion pipelines, indexing performance, platform health, and license utilization.
Troubleshoot Splunk infrastructure issues and optimize system performance.
Create and maintain security, operational, SOX, and Non-SOX monitoring alerts.
Develop dashboards, visualizations, and reports for security operations and compliance teams.
Ensure adherence to SLA requirements for alert creation, troubleshooting, and resolution activities.
Microsoft Sentinel Administration
Administer Microsoft Sentinel workspaces and security monitoring environments.
Create, modify, and optimize Analytics Rules, Automation Rules, Hunting Queries, and Workbooks.
Develop and maintain KQL (Kusto Query Language) queries for threat detection and security monitoring.
Integrate Microsoft Defender suite, Azure Monitor, Azure Activity Logs, and third-party security solutions with Sentinel.
Configure incident management workflows and automation playbooks.
Manage RBAC permissions, governance controls, and cost optimization initiatives within Sentinel.
Design and implement detection use cases for SOX and Non-SOX applications.
SIEM Migration (Splunk to Microsoft Sentinel)
Participate in SIEM migration planning, assessment, and proof-of-concept activities.
Analyze existing Splunk use cases and convert them to Microsoft Sentinel.
Migrate Splunk correlation rules, dashboards, reports, alerts, and data models to Sentinel.
Perform SPL to KQL query conversion and validation.
Execute parallel testing and validation to ensure equivalent functionality post-migration.
Support deployment and optimization of Sentinel automation playbooks and workflows.
Security Monitoring & Compliance
Support Security Operations Center (SOC) activities and incident investigations.
Collaborate with security teams to improve threat detection capabilities.
Ensure monitoring coverage for critical applications, infrastructure, and cloud environments.
Maintain compliance-related monitoring and reporting requirements.
Participate in audit support activities and security control validation exercises.
Required Skills
4–10 years of hands-on experience in Splunk Administration and Engineering.
Strong experience with Microsoft Sentinel administration and KQL.
Expertise in SIEM use-case development, alert management, and security monitoring.
Experience with Windows and Linux server administration.
Good understanding of cybersecurity concepts, incident management, and SOC operations.
Experience with Azure services, Microsoft Defender suite, and cloud security monitoring.
Knowledge of Splunk architecture, forwarders, indexing, and search optimization.
Experience in SIEM migration projects will be highly preferred.
Preferred Certifications
Splunk Core Certified Power User/Admin
Splunk Enterprise Security Certification
Microsoft Certified: Security Operations Analyst Associate (SC-200)
Microsoft Azure Security Certifications
Responsibilities
We are looking for an experienced SIEM Engineer with strong expertise in Splunk Administration, Engineering, and Microsoft Sentinel. The ideal candidate will be responsible for managing enterprise SIEM platforms, developing security monitoring use cases, supporting compliance requirements, and participating in SIEM migration initiatives.
Key Responsibilities
Splunk Administration & Engineering
Administer and maintain Splunk Enterprise and Splunk Cloud environments.
Configure, deploy, and manage Universal Forwarders and Heavy Forwarders across Windows and Linux platforms.
Manage Splunk indexing, search heads, data inputs, data models, dashboards, alerts, reports, and correlation searches.
Implement and maintain Common Information Model (CIM) normalization.
Monitor data ingestion pipelines, indexing performance, platform health, and license utilization.
Troubleshoot Splunk infrastructure issues and optimize system performance.
Create and maintain security, operational, SOX, and Non-SOX monitoring alerts.
Develop dashboards, visualizations, and reports for security operations and compliance teams.
Ensure adherence to SLA requirements for alert creation, troubleshooting, and resolution activities.
Microsoft Sentinel Administration
Administer Microsoft Sentinel workspaces and security monitoring environments.
Create, modify, and optimize Analytics Rules, Automation Rules, Hunting Queries, and Workbooks.
Develop and maintain KQL (Kusto Query Language) queries for threat detection and security monitoring.
Integrate Microsoft Defender suite, Azure Monitor, Azure Activity Logs, and third-party security solutions with Sentinel.
Configure incident management workflows and automation playbooks.
Manage RBAC permissions, governance controls, and cost optimization initiatives within Sentinel.
Design and implement detection use cases for SOX and Non-SOX applications.
SIEM Migration (Splunk to Microsoft Sentinel)
Participate in SIEM migration planning, assessment, and proof-of-concept activities.
Analyze existing Splunk use cases and convert them to Microsoft Sentinel.
Migrate Splunk correlation rules, dashboards, reports, alerts, and data models to Sentinel.
Perform SPL to KQL query conversion and validation.
Execute parallel testing and validation to ensure equivalent functionality post-migration.
Support deployment and optimization of Sentinel automation playbooks and workflows.
Security Monitoring & Compliance
Support Security Operations Center (SOC) activities and incident investigations.
Collaborate with security teams to improve threat detection capabilities.
Ensure monitoring coverage for critical applications, infrastructure, and cloud environments.
Maintain compliance-related monitoring and reporting requirements.
Participate in audit support activities and security control validation exercises.
Required Skills
4–10 years of hands-on experience in Splunk Administration and Engineering.
Strong experience with Microsoft Sentinel administration and KQL.
Expertise in SIEM use-case development, alert management, and security monitoring.
Experience with Windows and Linux server administration.
Good understanding of cybersecurity concepts, incident management, and SOC operations.
Experience with Azure services, Microsoft Defender suite, and cloud security monitoring.
Knowledge of Splunk architecture, forwarders, indexing, and search optimization.
Experience in SIEM migration projects will be highly preferred.
Preferred Certifications
Splunk Core Certified Power User/Admin
Splunk Enterprise Security Certification
Microsoft Certified: Security Operations Analyst Associate (SC-200)
Microsoft Azure Security Certifications
Salary : As per industry standard.
Industry :IT-Software / Software Services
Functional Area : IT Software - Application Programming , Maintenance