Project Role : Security Consulting Practitioner
Project Role Description : Provide enterprise-level advice to make organizations cyber resilient. Assist in navigating the complex landscape of cyber threats, ensuring robust digital asset protection while maintaining trust with stakeholders.
Must have skills : Security Information and Event Management (SIEM)
Good to have skills : NA
Minimum 3 year(s) of experience is required
Educational Qualification : 15 years full time education

Summary: As a Security Advisor, we are seeking a Data Source Onboarding Consultant to lead and support the integration of critical data sources into our security infrastructure. This role focuses on the technical and procedural aspects of onboarding logs and telemetry from various systems (on-premises, cloud, network, application, etc.) into our SIEM (CrowdStrike Next-Gen SIEM) and related platforms to ensure comprehensive visibility and threat detection. Roles & Responsibilities: - Work with IT and business units to identify relevant data sources for security monitoring. - Onboard logs into the SIEM (CrowdStrike Next-Gen SIEM) using data connectors, Falcon Log Collector, and other supported ingestion methods. - Validate log ingestion, ensure proper parsing, and verify that logs align with established schemas (e.g., CEF, LEEF, Syslog, JSON). - Map log data to security use cases and detection rules and Configure log collection agents (e.g., Syslog, Fluentd). - Set up API integrations for cloud-native sources. - Customize and maintain parsers, log collectors, and transformation rules. - Maintain detailed documentation of onboarding procedures, configurations, and troubleshooting steps. - Conduct data quality reviews and log validation exercises. - Optimize data ingestion for performance and cost-effectiveness (e.g., reducing noisy logs, adjusting retention settings). - Tune and test correlation rules associated with newly onboarded data sources. - Work cross-functionally with SOC analysts, SIEM admins, application owners, and infrastructure teams Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM). - Strong understanding of incident response and threat detection methodologies. - Experience with security monitoring tools and techniques. - Knowledge of compliance frameworks and regulations related to cybersecurity. - Ability to analyze security incidents and provide actionable recommendations. - Experience with cloud logging (AWS CloudTrail, Azure Monitor, GCP Logging). - Scripting and automation skills (e.g., PowerShell, Python, Bash). - Understanding of MITRE ATT&CK, NIST, or other security frameworks. - Excellent communication and interpersonal skills. - Ability to explain technical concepts to non-technical stakeholders. - Strong analytical, troubleshooting, and organizational skills. - Project management skills and ability to handle multiple onboarding projects simultaneously. Additional Information: - The candidate should have minimum 8+ years of experience in a cybersecurity, security engineering, or SIEM-related role. - Experience with onboarding data into SIEM platforms such as CrowdStrike Next-Gen, Splunk, Azure Sentinel. - This position is based at our Bengaluru office. - A 15 years full time education is required. - Bachelor’s degree in computer science, Information Security, or related field. - Strong understanding of logging standards and protocols (Syslog, Windows Event Logs, API, JSON, CEF, etc.). - Familiar with common operating systems (Linux, Windows), networking devices, cloud environments, and enterprise applications.

15 years full time education

About Accenture

Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent- and innovation-led company with approximately 791,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. Our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.

Visit us at www.accenture.com 

Equal Employment Opportunity Statement

We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, military veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by applicable law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.