1

Sentinel Siem Jobs in Indiana (NOW HIRING)

Manager, Cyber Security

Indianapolis, IN · On-site

$150K - $165K/yr

Proficiency with SIEM platforms (e.g., Splunk, Microsoft Sentinel, QRadar) * Experience with vulnerability management tools (e.g., Tenable, Qualys, Rapid7) * Working knowledge of cloud security in ...

Experience with SIEM integrations (Syslog, Splunk, Sentinel, QRadar), NAC/identity, IDS use cases (Dragos, Claroty, Nozomi Networks, etc.) and zero trust concepts. Experience supporting M&A / partner ...

Experience with SIEM integrations (Syslog, Splunk, Sentinel, QRadar), NAC/identity, IDS use cases (Dragos, Claroty, Nozomi Networks, etc.) and zero trust concepts. * Experience supporting M&A / ...

next page

Showing results 1-20

Sentinel Siem information

What is a Sentinel SIEM?

Sentinel SIEM refers to Microsoft Sentinel, a cloud-native security information and event management (SIEM) solution. It helps organizations detect, investigate, and respond to security threats across their entire enterprise by collecting and analyzing data from various sources. Sentinel SIEM provides advanced threat detection, automated response, and comprehensive visibility into security events, making it easier for security teams to protect their environments. Its integration with Microsoft Azure and other platforms enables scalable and intelligent security operations.

What are some common challenges faced by professionals working with Microsoft Sentinel SIEM, and how can they be addressed?

Professionals working with Microsoft Sentinel SIEM often encounter challenges such as keeping up with evolving security threats, managing a high volume of alerts, and customizing detection rules to fit their organization's needs. Addressing these issues typically involves ongoing tuning of analytic rules, leveraging automation features like playbooks to reduce manual workload, and regularly collaborating with IT and security teams to ensure that the SIEM is aligned with current business risks. Continuous training and staying updated with Microsoft's documentation and community forums can also help professionals effectively manage and optimize Sentinel deployments.

What are the key skills and qualifications needed to thrive as a Sentinel SIEM Specialist, and why are they important?

To thrive as a Sentinel SIEM Specialist, you need a solid understanding of cybersecurity principles, threat analysis, and experience with security incident and event management, often supported by a degree in information security or related certifications like Microsoft Certified: Security Operations Analyst Associate. Proficiency with Microsoft Sentinel, Kusto Query Language (KQL), and familiarity with security orchestration and automation tools are typically required. Strong analytical thinking, attention to detail, and effective communication are essential soft skills for interpreting data and coordinating responses. These skills are crucial for quickly detecting, investigating, and mitigating security threats to protect organizational assets.

What is the difference between Sentinel Siem vs Splunk Security Analyst?

AspectSentinel SiemSplunk Security Analyst
CertificationsMicrosoft Certified: Security, Compliance, and Identity Fundamentals, Azure Security EngineerSplunk Certified User, Splunk Core Certified Power User
Work EnvironmentCloud-based SIEM platform, integrated with Azure servicesOn-premises or cloud, data analysis and security monitoring
Industry UsagePrimarily used in organizations leveraging Microsoft Azure and cloud securityUsed across various industries for security data analysis and monitoring

Sentinel Siem focuses on cloud-native security monitoring within Microsoft Azure environments, while Splunk Security Analyst specializes in analyzing security data across diverse platforms. Both roles require knowledge of security principles and data analysis, but Sentinel Siem emphasizes Azure integration, whereas Splunk offers broader data handling capabilities.

What are popular job titles related to Sentinel Siem jobs in Indiana? For Sentinel Siem jobs in Indiana, the most frequently searched job titles are:
What job categories do people searching Sentinel Siem jobs in Indiana look for? The top searched job categories for Sentinel Siem jobs in Indiana are:
What cities in Indiana are hiring for Sentinel Siem jobs? Cities in Indiana with the most Sentinel Siem job openings:
Manager, Cyber Security

Manager, Cyber Security

USIC

Indianapolis, IN • On-site

$150K - $165K/yr

Full-time

Posted 11 days ago


USIC rating

6.5

Company rating: 6.5 out of 10

Based on 264 frontline employees who took The Breakroom Quiz

303rd of 451 rated business services


Job description

Job Description:
Location: 100% remote, must live in Central or Eastern Region
Salary Range: $150,000 - $165,000
Company Overview
Performing over 80 million locates annually, USIC is the most trusted name in underground utility damage prevention. USIC also provides a full suite of utility services throughout North America. Our Mission: to deliver quality, efficient, safe, and innovative solutions to protect our partners' infrastructure and critical assets. Our Culture is known as Living the SAFE-LIFE: Protecting Infrastructure, Protecting Our Communities, Protecting Ourselves.
Summary
The Cybersecurity Manager is a senior role responsible for leading, maturing, and hands-on execution of the organization's information security program. Operating across a large enterprise environment of 2,500-10,000 employees in a hybrid cloud/on-premise landscape, this individual will serve as both a strategic program leader and a working technical practitioner. With one direct report, the Cybersecurity Manager must be capable of operating independently, driving security initiatives end-to-end, and building a scalable security function aligned to industry best practices including NIST CSF, CIS Controls, and ISO 27001.
Responsibilities
  • Own and mature the organization's information security program and policy framework
  • Lead risk assessments and maintain the enterprise risk register with remediation tracking
  • Develop and enforce security policies, standards, and procedures aligned to NIST CSF and CIS Controls
  • Report security posture, risk trends, and program metrics to senior leadership and stakeholders
  • Manage internal and external audit engagements related to cybersecurity
  • Oversee day-to-day security monitoring across SIEM, EDR, and network detection tooling
  • Define detection and alerting strategies; tune rules to reduce false positives
  • Review and triage escalated alerts; serve as a hands-on analyst when needed
  • Maintain and improve SOC playbooks, runbooks, and escalation procedures
  • Serve as the Incident Response lead for all cybersecurity events and breaches
  • Develop, maintain, and exercise the Incident Response Plan (IRP) and associated playbooks
  • Coordinate cross-functional response with IT, Legal, HR, and Executive leadership
  • Conduct post-incident reviews and drive remediation of identified gaps
  • Oversee security architecture reviews for on-premise and cloud environments (AWS, Azure, or GCP)
  • Ensure security-by-design principles are applied to infrastructure changes and new deployments
  • Manage vulnerability management program including scanning, prioritization, and remediation tracking
  • Partner with IT and DevOps teams to embed security controls into the SDLC and cloud pipelines
  • Govern IAM strategy including role-based access control (RBAC), least privilege, and access reviews
  • Oversee MFA, SSO, and privileged access management (PAM) implementations
  • Conduct and manage periodic user access certifications across enterprise systems
  • Partner with HR and IT on joiner/mover/leaver lifecycle processes
  • Manage and mentor one direct report (Cybersecurity Analyst / Engineer)
  • Define team priorities, manage workload distribution, and conduct performance reviews
  • Build and maintain a multi-year cybersecurity roadmap aligned to organizational risk appetite
  • Manage security tool stack, vendor relationships, and departmental budget

Requirements
  • 7+ years of experience in cybersecurity, with at least 2 years in a lead or management capacity
  • Demonstrated hands-on experience across two or more security domains (GRC, SOC, IR, Cloud Security, IAM, TPRM)
  • Proficiency with SIEM platforms (e.g., Splunk, Microsoft Sentinel, QRadar)
  • Experience with vulnerability management tools (e.g., Tenable, Qualys, Rapid7)
  • Working knowledge of cloud security in AWS, Azure, or GCP hybrid environments
  • Strong understanding of security frameworks: NIST CSF, CIS Controls, ISO 27001
  • Proven ability to lead incident response engagements end-to-end
  • Excellent written and verbal communication skills; ability to present to executive stakeholders
  • CISSP, CISM, CISA, or equivalent industry certification, preferred
  • Experience building or significantly maturing a security program
  • Familiarity with GRC platforms (e.g., ServiceNow GRC, Archer, OneTrust)
  • Experience with PAM tooling (e.g., CyberArk, BeyondTrust)
  • Background in a large enterprise environment (2,500+ employees)

We are an Equal Opportunity Employer. Veterans are encouraged to apply.

What USIC employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom


USIC logo

About USIC

Sourced by ZipRecruiter

USIC is a leading provider of underground utility damage prevention services, performing over 70 million locates each year. With a strong reputation for reliability, USIC offers a comprehensive range of utility services across the United States and Canada. The company's mission is to deliver innovative and efficient solutions that prioritize safety and protect critical assets and infrastructure for its partners.

Industry

Internet and it

Company size

10,000+ Employees

Headquarters location

Indianapolis, IN, US

Year founded

2008

Social media