Assistant Manager - SIEM Admin
KPMGMumbai, Maharashtra, India
Posted April 14, 2026
Full Time
About the Company
KPMG is a global network of professional firms providing Audit, Tax and Advisory services with outstanding professionals delivering value across 143 countries.
Job Description
Assistant Manager - SIEM Admin will administer, maintain, and optimize the Microsoft Sentinel SIEM platform and manage log sources across cloud and onprem systems. The role will also create and fine-tune analytics rules, custom use cases, workbooks, dashboards, and automation playbooks, as well as troubleshoot ingestion failures and platform errors.
Requirements
- Administer, maintain, and optimize the Microsoft Sentinel SIEM platform
- Manage log sources across cloud and onprem systems
- Create and fine-tune analytics rules, custom use cases, workbooks, dashboards, and automation playbooks
- Monitor SIEM health, performance, and capacity
- Manage threat detection configurations and improve alert fidelity
- Work closely with SOC teams to enhance detection and response capabilities
- Implement and maintain data ingestion pipelines using Log Analytics
- Maintain KQL queries, scheduled rules, incident workflows, and watchlists
- Troubleshoot ingestion failures, connector issues, and platform errors
- Conduct periodic upgrades, patching, and platform hygiene tasks
- Ensure compliance with internal security policies and audit requirements
- Support the integration of EDR, cloud security tools, IAM systems, and network devices
- Document SIEM architecture, processes, and configuration changes
Benefits
- Opportunity to work with a leading professional services firm