Senior Analyst, SIEM & Automation, Information Security

Edwards Lifesciences is expanding its global technology capabilities with the launch of a new IT Innovation Hub in Pune, India. The Hub strengthens the technology foundation that supports our business worldwide, working in close partnership with teams across regions to deliver reliable, high-quality solutions at scale.

Designed as a long-term investment, the Pune Hub will advance newer digital capabilities such as automation, data, AI, and cloud, and will include roles spanning end user services, application development, and enterprise platform teams. Together, these teams will help Edwards operate more efficiently and accelerate innovation in support of our mission of advancing patient care.

As an Edwards Sr. Analyst for Information Security, you will contribute with protecting Edwards organization, applications, and products by leading SIEM engineering, managing data pipelines and building automation use cases. Ideal candidates possess knowledge in data source onboarding, writing parsers and SOAR operations.

If you have an innovative mindset and a strong desire to address security challenges through scalable automation and SIEM engineering – this role is for you. How will you make an impact: Design, build, and maintain log ingestion pipelines from cloud, on-prem, and SaaS sources into the SIEM platform Write and tune field extraction rules, parsers, and normalization logic (regex, Grok, CEF/LEEF, OCSF, ECS) Onboard new data sources end-to-end: connector configuration, schema mapping, field normalization, and data validation Partner with detection engineers to ensure data quality and completeness for use-case coverage Manage log volume for cost optimization, and data routing policies (tiering, filtering, sampling) Responsible for operations and maintenance of key cyber security capabilities and services in security operations area – SIEM and Data Pipeline Design, build and maintain complexed automation use cases and AI-Agents in Incident Response, IAM, Cloud and Security operations areas Improve security data pipelines by building innovative automations Staying informed on the evolving cybersecurity threat landscape to drive innovative SIEM processes and automations to drive Edwards’ security posture What you'll need (Required): Bachelor's Degree in related field with 5 years of previous related experience, or equivalent work experience based on Edwards criteria What else we look for (Preferred): Previous related experience in SIEM management Expert with Google SecOps or other SIEM solutions (Splunk, Qradar etc) Expert with security Data Pipeline solutions (Cribl, bindplane, databahn etc) Experience with SOAR platforms operations (Torq, PaloAlto XSOAR etc) Experience with parser creation and data formatting (regex, Grok, CEF/LEEF, OCSF, ECS) Ability to evaluate, prioritize and integrate new data sources (OT/ICS, API telemetry) Expirence with log forwarding technologies (rsyslog, syslog-ng, Fluentd/Fluent Bit, NXLog etc) Certifications in related discipline preferred (e.g., CEH, CISM, CISSP) Understanding of security concepts in any of the following: IDR, Cloud, IAM and security operations Scripting proficiency: Python or Bash for automation and parser development Proficient analytical and problem-solving abilities to identify and mitigate potential security risks Strict attention to detail Ability to partner with other information security and IT experts Substantial understanding of troubleshooting techniques with the ability to adapt and learn new technologies Ability to provide guidance to assigned teams on implementing information security solutions Excellent organization and time management skills Excellent verbal and written communication skills Recruiting scam alert: Read our notice about potential recruiting scams.