Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 1K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Premium Employer

VLink

Compare

3.9

based on 86 Reviews

23 VLink Jobs

Security Engineer - SIEM (6-7 yrs)

M/s. Vlink India Pvt Ltd

3.9

based on 86 Reviews

6-7 years

VLink

posted 18hr ago

Job Role Insights

Flexible timing

Key skills for the job

Cyber Security Incident Management Splunk Admin SIEM Azure Sentinel

Job Description

1. Job Description :

We are seeking a Security Engineer with expertise in Security Information and Event Management (SIEM) and Endpoint Detection and Response (EDR). The ideal candidate will have a strong background in log management, incident detection, and response using Splunk and Sentinel One EDR.

2. Responsibilities :

- Manage and optimize Splunk deployment for log collection, monitoring, and analysis.

- Develop and maintain Splunk dashboards, searches, and alerts to identify security incidents and breaches.

- Integrate log sources with Splunk to enhance threat detection, investigation, and response capabilities.

- Onboard multi-vendor assets across our estate on the platform, group devices to enforce RBAC to provision owners of the resources access to reported issues and setup automated notifications to alert resource owners of issues requiring attention

- Drive auto-remediation upon detecting violations by judiciously leveraging platform's native automation capability where available and support processes aimed at semi-automated / manual dissemination of findings / issues to resource owners as well as follow-up on their remediation status.

- Deploy, configure, and maintain Sentinel One EDR across endpoints, including servers, desktops

- Set up and configure Sentinel One policies to ensure optimal detection and prevention of threats across the organization.

- Continuously fine-tune SIEM rules and EDR alerts to improve the detection of emerging threats.

- Create reports and metrics for management on the health of security operations.

3. Qualifications :

- Bachelor's or master's degree in computer science, or equivalent experience in related field.

- 6 to 7 years professional experience managing and maintaining Splunk & EDR.

- Strong experience with Splunk, including search processing language (SPL), dashboard creation, and app/TA development.

- Experience with Sentinel One EDR

- Knowledge of security event correlation, log management, and SIEM best practices.

- Excellent troubleshooting and analytical skills.

4. Certifications :

- Splunk Enterprise Certified Admin

- Splunk Core Certified Power User

- Sentinel One EDR certified admin or any other EDR certifications.

Mandate : Deploy, configure, and maintain Sentinel One EDR across endpoints, including servers, desktops