Senior Administrator - Security Investigations, SIEM - HCLTech

Key Responsibilities

• Monitor and analyze security alerts in Microsoft Sentinel, triaging incidents escalated from L1.
• Conduct in-depth log analysis to identify real threats and support incident response and remediation.
• Fine‑tune SIEM rules and detection logic to improve alert accuracy and reduce noise.
• Lead threat hunting initiatives, leveraging threat intelligence and advanced analytics.
• Develop and maintain automation playbooks to streamline investigation and response workflows.
• Document findings, produce detailed reports, and coordinate with internal security and IT teams.

Requirements

• Proven experience with Microsoft Sentinel and other SIEM platforms.
• Strong knowledge of security logs, common cyber threats, and incident response processes.
• Hands‑on experience with threat hunting, rule tuning, and automation scripting.
• Excellent analytical, communication, and documentation skills.
• Ability to work collaboratively in a fast‑paced SOC environment.