Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
- Gratuity calculator
  
  Check your gratuity amount
- HRA calculator
  
  Check how much of your HRA is tax-free
- Salary hike calculator
  
  Check your salary hike
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 2K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Employer? Claim Account for FREE

9 to 6 Management Consultants

Compare

No reviews yet

4 9 to 6 Management Consultants Jobs

Senior Security Engineer - Splunk/Azure Sentinel (7-12 yrs)

9to6 Management Consultants

7-12 years

9 to 6 Management Consultants

posted 4d ago

Job Role Insights

Key skills for the job

Information Security Splunk Admin SIEM Azure Sentinel

Job Description

1. Job Description

We are seeking a Security Engineer with expertise in Security Information and Event Management (SIEM) and Endpoint Detection and Response (EDR). The ideal candidate will have a strong background in log management, incident detection, and response using Splunk and Sentinel One EDR.

2. Responsibilities

- Manage and optimize Splunk deployment for log collection, monitoring, and analysis.

- Develop and maintain Splunk dashboards, searches, and alerts to identify security incidents and breaches.

- Integrate log sources with Splunk to enhance threat detection, investigation, and response capabilities.

- Onboard multi-vendor assets across our estate on the platform, group devices to enforce RBAC to provision owners of the resources access to reported issues and setup automated notifications to alert resource owners of issues requiring attention

- Drive auto-remediation upon detecting violations by judiciously leveraging platform's native automation capability where available and support processes aimed at semi-automated manual dissemination of findings / issues to resource owners as well as follow-up on their remediation status.

- Deploy, configure, and maintain Sentinel One EDR across endpoints, including servers, desktops

- Set up and configure Sentinel One policies to ensure optimal detection and prevention of threats across the organization.

- Continuously fine-tune SIEM rules and EDR alerts to improve the detection of emerging threats.

- Create reports and metrics for management on the health of security operations.

3. Qualifications :

- Bachelor's or master's degree in computer science, or equivalent experience in related field.

- 7-12 years professional experience managing and maintaining Splunk & EDR.

- Strong experience with Splunk, including search processing language (SPL), dashboard creation, and app/TA development.

- Experience with Sentinel One EDR

- Knowledge of security event correlation, log management, and SIEM best practices.

- Excellent troubleshooting and analytical skills.

4. Certifications

- Splunk Enterprise Certified Admin

- Splunk Core Certified Power User

- Sentinel One EDR-certified admin or any other EDR certification