Analyst, SIEM, Information Security

Edwards Lifesciences is expanding its global technology capabilities with the launch of a new IT Innovation Hub in Pune, India. The Hub strengthens the technology foundation that supports our business worldwide, working in close partnership with teams across regions to deliver reliable, high-quality solutions at scale.

Designed as a long-term investment, the Pune Hub will advance newer digital capabilities such as automation, data, AI, and cloud, and will include roles spanning end user services, application development, and enterprise platform teams.

As an Edwards Analyst for Information Security, you will contribute with protecting Edwards organization, applications, and products by supporting SIEM and forensics operations. Ideal candidates bring hands-on experience in data source onboarding, parser development and log normalization. If you have an innovative mindset and a strong desire to address security challenges through scalable SIEM engineering — this role is for you.

How will you make an impact:

• Support SIEM data engineering operations by maintaining and operating log ingestion pipelines from cloud, on-prem, and SaaS sources into the SIEM platform

• Develop and tune field extraction rules, parsers, and normalization logic (regex, Grok, CEF/LEEF, OCSF, ECS) to keep data well-structured and queryable

• Assist with onboarding new data sources: connector configuration, schema mapping, field normalization, and data validation

• Monitor and improve data quality, completeness, and field consistency to support detection engineering use-case coverage

• Apply log volume and data routing policies (tiering, filtering, sampling) to support data cost optimization and pipeline health

• Maintain data source inventory and normalization coverage documentation to support detection engineering and audit requirements

• Troubleshoot data ingestion, parsing, and normalization issues, escalating complex platform changes to senior SIEM engineers

• Stay informed on evolving log sources and data formats to help improve SIEM data processes and strengthen Edwards’ security posture

What you'll need (Required):

• Bachelor's Degree in related field with 2+ years of previous related experience, or equivalent work experience based on Edwards criteria

What else we look for:

• Previous related experience in SIEM management

• Experience with Google SecOps or other SIEM solutions (Splunk, Qradar etc)

• Experience with security Data Pipeline solutions (Cribl, bindplane, databahn etc) – Preffered

• Experience with parser creation and data formatting (regex, Grok, CEF/LEEF, OCSF, ECS)

• Expirence with data source onboarding (OT/ICS, API telemetry)

• Expirence with log forwarding technologies (rsyslog, syslog-ng, Fluentd/Fluent Bit, NXLog etc)

• Expirence with Forensics operations – Preffered

• Certifications in related discipline preferred (e.g., CEH, CISM, CISSP)

• Expert of security data tuning, SIEM and log sources concepts

• Scripting experience – preffered

• Moderate understanding of troubleshooting techniques with the ability to adapt and learn new technologies

• Proficient analytical and problem-solving abilities to identify and mitigate potential security risks

• Good organization and time management skills

• Good verbal and written communication skills and customer focused skills 

Recruiting scam alert: Read our notice about potential recruiting scams.