SME - Security Information And Event Management (SIEM) Job Details

SME - Security Information And Event Management (SIEM)

India

Job Description

SME - Security Information And Event Management (SIEM)

Noida, Uttar Pradesh

Job Summary

Job Summary : Job Title - Senior Engineer – SOAR Location - India • Key Responsibilities • SOAR Platform Engineering • Configure and enhance SOAR platforms (e.g., Cortex XSOAR, Splunk SOAR, Swimlane, Sentinel SOAR) • Develop reusable automation frameworks and response components • Automation & Integration • Build and maintain API based integrations with security tools (SIEM, EDR/XDR, IAM, firewalls, email gateways, cloud platforms) • Develop custom scripts and connectors using Python, REST APIs, and vendor SDKs • SOC & Incident Response Support • Partner with SOC analysts to convert manual workflows into automated playbooks • Support major security incidents by rapidly creating or modifying response automations • Align SOAR workflows with MITRE ATT&CK; based detections and threat response strategies • Integrate threat intelligence feeds and enrichment services into playbooks • Ensure SOAR implementations follow security, risk, and compliance requirements • Identify opportunities to increase automation coverage and reduce MTTR Required Skills & Experience • Minimum 10 Years of experience • Strong hands on experience with SOAR platforms (Cortex XSOAR, Splunk SOAR, Swimlane, etc.) • Solid understanding of REST APIs, JSON, authentication mechanisms • Experience integrating SIEM, EDR/XDR, IAM, email, network, and cloud security tools • Strong understanding of SOC operations and incident response processes • Familiarity with MITRE ATT&CK;, detection to response workflows • Experience working with threat intelligence, indicators, and enrichment services • Exposure to cloud environments (AWS, Azure, GCP) and SaaS security tooling • Excellent troubleshooting and problem solving skills • Ability to translate SOC requirements into scalable automation • Strong communication skills and ability to work under incident pressure Preferred Qualifications • Experience in financial services or regulated environments • Prior exposure to large scale SOC transformation or automation programs • Certifications such as: • GCED, GCIH, GCIA, CISSP Job Responsibilities : Job Title - Senior Engineer – SOAR Location - India • Key Responsibilities • SOAR Platform Engineering • Configure and enhance SOAR platforms (e.g., Cortex XSOAR, Splunk SOAR, Swimlane, Sentinel SOAR) • Develop reusable automation frameworks and response components • Automation & Integration • Build and maintain API based integrations with security tools (SIEM, EDR/XDR, IAM, firewalls, email gateways, cloud platforms) • Develop custom scripts and connectors using Python, REST APIs, and vendor SDKs • SOC & Incident Response Support • Partner with SOC analysts to convert manual workflows into automated playbooks • Support major security incidents by rapidly creating or modifying response automations • Align SOAR workflows with MITRE ATT&CK; based detections and threat response strategies • Integrate threat intelligence feeds and enrichment services into playbooks • Ensure SOAR implementations follow security, risk, and compliance requirements • Identify opportunities to increase automation coverage and reduce MTTR Required Skills & Experience • Minimum 10 Years of experience • Strong hands on experience with SOAR platforms (Cortex XSOAR, Splunk SOAR, Swimlane, etc.) • Solid understanding of REST APIs, JSON, authentication mechanisms • Experience integrating SIEM, EDR/XDR, IAM, email, network, and cloud security tools • Strong understanding

Key Responsibilities

Skill Requirements

Skill Requirement : Job Title - Senior Engineer – SOAR Location - India • Key Responsibilities • SOAR Platform Engineering • Configure and enhance SOAR platforms (e.g., Cortex XSOAR, Splunk SOAR, Swimlane, Sentinel SOAR) • Develop reusable automation frameworks and response components • Automation & Integration • Build and maintain API based integrations with security tools (SIEM, EDR/XDR, IAM, firewalls, email gateways, cloud platforms) • Develop custom scripts and connectors using Python, REST APIs, and vendor SDKs • SOC & Incident Response Support • Partner with SOC analysts to convert manual workflows into automated playbooks • Support major security incidents by rapidly creating or modifying response automations • Align SOAR workflows with MITRE ATT&CK; based detections and threat response strategies • Integrate threat intelligence feeds and enrichment services into playbooks • Ensure SOAR implementations follow security, risk, and compliance requirements • Identify opportunities to increase automation coverage and reduce MTTR Required Skills & Experience • Minimum 10 Years of experience • Strong hands on experience with SOAR platforms (Cortex XSOAR, Splunk SOAR, Swimlane, etc.) • Solid understanding of REST APIs, JSON, authentication mechanisms • Experience integrating SIEM, EDR/XDR, IAM, email, network, and cloud security tools • Strong understanding of SOC operations and incident response processes • Familiarity with MITRE ATT&CK;, detection to response workflows • Experience working with threat intelligence, indicators, and enrichment services • Exposure to cloud environments (AWS, Azure, GCP) and SaaS security tooling • Excellent troubleshooting and problem solving skills • Ability to translate SOC requirements into scalable automation • Strong communication skills and ability to work under incident pressure Preferred Qualifications • Experience in financial services or regulated environments • Prior exposure to large scale SOC transformation or automation programs • Certifications such as: • GCED, GCIH, GCIA, CISSP

Other Requirements

Other Requirement : Job Title - Senior Engineer – SOAR Location - India • Key Responsibilities • SOAR Platform Engineering • Configure and enhance SOAR platforms (e.g., Cortex XSOAR, Splunk SOAR, Swimlane, Sentinel SOAR) • Develop reusable automation frameworks and response components • Automation & Integration • Build and maintain API based integrations with security tools (SIEM, EDR/XDR, IAM, firewalls, email gateways, cloud platforms) • Develop custom scripts and connectors using Python, REST APIs, and vendor SDKs • SOC & Incident Response Support • Partner with SOC analysts to convert manual workflows into automated playbooks • Support major security incidents by rapidly creating or modifying response automations • Align SOAR workflows with MITRE ATT&CK; based detections and threat response strategies • Integrate threat intelligence feeds and enrichment services into playbooks • Ensure SOAR implementations follow security, risk, and compliance requirements • Identify opportunities to increase automation coverage and reduce MTTR Required Skills & Experience • Minimum 10 Years of experience • Strong hands on experience with SOAR platforms (Cortex XSOAR, Splunk SOAR, Swimlane, etc.) • Solid understanding of REST APIs, JSON, authentication mechanisms • Experience integrating SIEM, EDR/XDR, IAM, email, network, and cloud security tools • Strong understanding of SOC operations and incident response processes • Familiarity with MITRE ATT&CK;, detection to response workflows • Experience working with threat intelligence, indicators, and enrichment services • Exposure to cloud environments (AWS, Azure, GCP) and SaaS security tooling • Excellent troubleshooting and problem solving skills • Ability to translate SOC requirements into scalable automation • Strong communication skills and ability to work under incident pressure Preferred Qualifications • Experience in financial services or regulated environments • Prior exposure to large scale SOC transformation or automation programs • Certifications such as: • GCED, GCIH, GCIA, CISSP

Information at a Glance

Why HCLTech?

At HCLTech, you'll supercharge your potential. You'll find your career. And you'll find your spark. All at a place that knows that helping its customers stay on top starts by putting its people first.

HCLTech is a global technology company, home to more than 226,300 people across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud and AI, powered by a broad portfolio of technology services and products. We work with clients across all major verticals, providing industry solutions for Financial Services, Manufacturing, Life Sciences and Healthcare, Technology and Services, Telecom and Media, Retail and CPG, and Public Services. Consolidated revenues as of 12 months ending December 2025 totaled $14.5 billion.

23 Benefits At HCLTech, we believe in empowering our employees with comprehensive benefits that support their professional growth and enhance their well-being. When you sign up for a career with us, you gain access to: https://rmkcdn.successfactors.com/147eb21f/a701dca9-f32d-4fc9-9447-6.svg Industry-benchmarked compensation https://rmkcdn.successfactors.com/147eb21f/b0c54381-ddcc-4a33-9b35-9.svg Best-in-class healthcare benefits https://rmkcdn.successfactors.com/147eb21f/b73027be-7aae-4d36-a090-4.svg Personal time off https://rmkcdn.successfactors.com/147eb21f/d5b4fdfd-2e99-4e26-9878-9.svg Maternity and paternity benefits https://rmkcdn.successfactors.com/147eb21f/3d42b0fc-4652-435a-9ece-c.svg Access to skills / higher education programs/resources https://rmkcdn.successfactors.com/147eb21f/aeddeaf2-9e25-4584-ad11-d.svg Discounts on products and services via Benefit Box https://rmkcdn.successfactors.com/147eb21f/a9609a3b-2700-4b3c-9d90-a.svg Participate in CSR programs and live life with a purpose https://rmkcdn.successfactors.com/147eb21f/c6e33851-710f-4634-bd69-f.svg Opportunities to grow and advance your career Note: The benefits listed above vary depending on the nature of your employment and the country where you work. Some benefits may be available in some countries but not in all.

Provider	Description	Enabled
Vimeo	Vimeo is a video hosting, sharing, and services platform focused on the delivery of video. Opting out of Vimeo cookies will disable your ability to watch or interact with Vimeo videos. Cookie Policy Privacy Policy Terms and Conditions	Consent to cookies from provider Vimeo
YouTube	YouTube is a video-sharing service where users can create their own profile, upload videos, watch, like, and comment on videos. Opting out of YouTube cookies will disable your ability to watch or interact with YouTube videos. Cookie Policy Privacy Policy Terms and Conditions	Consent to cookies from provider YouTube

Provider	Description	Enabled
Google Analytics	Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Cookie Information Privacy Policy Terms and Conditions	Consent to cookies from provider GoogleAnalytics
Google Tag Manager	Google Tag Manager is a tag management system for conversion tracking, site analytics, remarketing, and more. Privacy Policy Terms and Conditions	Consent to cookies from provider GoogleTagManager
LinkedIn	LinkedIn is an employment-oriented social networking service. We use the Apply with LinkedIn feature to allow you to apply for jobs using your LinkedIn profile. Opting out of LinkedIn cookies will disable your ability to use Apply with LinkedIn. Cookie Policy Cookie Table Privacy Policy Terms and Conditions	Consent to cookies from provider LinkedIn