Job Description (Posting). Log source onboarding into Devo through Devo Relays, Endpoint Agent (EA), Endpoint Agent Manager (EAM) and collectorsTroubleshoot for any issues related to log sources, Devo relays, EA, EAM, CollectorsPerform Health Check on Log sources, Relays EA & EAM , Core Platform & Third Party Solutions integrated with SIEMUser management within a Devo domain (local & SAML)Able to use the applications within Devo (Behavior Analytics, MITRE Advisor & SecOps with entities)Rule Creation & Modification using LINQ sub-queriesMonitor the alert volume and finetune the noisy alertsVendor Ticket Management (3rd party tools) - Creation/UpdationRunbook/SOP - Creation & UpdationCreation of Dashboards and reports through dashboardsMonitor & Prepare Utilization Reports on EPS, GB/day & System Resources (1.) To clearly understand the client's cybersecurity environment and respective product. (2.) To monitor, configure, and troubleshoot cybersecurity issues and related monitoring tools (3.) To analyse and validate cybersecurity incidents in-detail and help the L3 team with RCAordata or logs collection (4.) To enable knowledge transferortrainings through creationor maintenance of configuration documents, test plans, operational manuals and provide operational training to L1 team. (5.) To analyse and fine-tune cybersecurity policies, participate in cybersecurity review calls pertaining to change requests and recommendations on cybersecurity policy changes. (6.) To implement changes, monitor security device performance and implements performance tuning when necessary. (7.) To prepare analyses and reports to highlight the project progressorchallenges and ensure quality and accuracy to the client Qualification B.E, B.Pharm, B.Tech, Bachelor of Science, BBA, BBM, BCA, BSc, B-Tech, M.E, M.Sc, M.TECH, Master of Science, MBA, MCA, ME/M Tech Skill (Primary) INFORMATION SECURITY-TECHNICAL SOLUTION IMPLEMENTATION-TECHNICAL SOLUTION IMPLEMENTATION-SIEM
