Perydot - Lead Security Engineer - SIEM/SOAR

Job Summary : We are seeking a highly skilled and experienced LogRhythm L3 Subject Matter Expert (SME) to join our cybersecurity team. The ideal candidate will have extensive expertise in Security Information and Event Management (SIEM), SOAR, User and Entity Behavior Analytics (UEBA), and Network Monitoring (NetMon) using LogRhythm. This role involves advanced troubleshooting, system optimization, and ensuring the security of our network infrastructure. KRAs of the role : This is a core technical IC role which requires candidate to be hands on and ability to deliver the below tasks independently. > Ownership of SIEM platform in terms of administration and management (should be currently performing this role) a. Ensuring platform and service uptime. b. Efficient management of the platform to ensure proper performance. c. Upgrade and updates (KBs)/ patch as per OEM. d. Platform capacity management. e. Administration and management of underlying Infrastructure Layer. f. Log Source Integration to include development of custom parsers for non-supported log sources. g. Integration with other platforms like Threat Intelligence. h. Configuration of SOAR plugins. i. Advanced troubleshooting of the SIEM platform. j. Problem management. Working closely with OEM. k. Configuration of rules reports and dashboards based on inputs from monitoring team. l. Documentation of RCAs for major incidents Other skills required : a. Ability to interact with and manage customer stakeholders in the context of platform management. b. Good team working skills and communication. Technology and skills a. SIEM : LogRhythm is mandatory. b. SOAR : SIEM native of any third party. c. UEBA Management : Configure, maintain, upgrade, and optimize the LogRhythm UEBA module to detect and respond to anomalous user activities. d. NetMon Management : Oversee the deployment, configuration, and maintenance of LogRhythm NetMon to ensure comprehensive network visibility. e. System Integration : Integrate various data sources and security tools with SIEM, SOAR, UEBA, and NetMon platforms to enhance visibility and detection capabilities. f. Technical Support : Provide advanced technical support and troubleshooting for SIEM, SOAR, UEBA, and NetMon-related issues. g. Content Development : Develop and fine-tune detection use cases, and custom Reports / Dashboard to improve detection capabilities and reduce false positives. And LogRhythm SOAR plugins configuration (Standard / Customization). h. Threat Intelligence and Brand Monitoring. i. Scripting : Regex is mandatory. j. Knowledge of scripting languages (e.g., Python, PowerShell) for automation. k. OS : Windows and Linux (intermediate skills). l. Good knowledge of security domain is mandatory. Working Window : a. Should be flexible to work in shifts and on demand for any weekend activities Experience / Skills/Qualifications : a. Education Qualification : Any Graduation/Intermediate/ Diploma with minimum 60% b. Certifications (ref:hirist.tech)

Location: hyderabad, IN

Posted Date: 4/3/2025