Job Details

Home

Splunk Enterprise Security SME Hybrid at Westlake, Texas at Enterprise, Utah, USA

Email: [email protected]

From:

Devyani Kumari,

Absolute IT

[email protected]

Reply to: [email protected]

Splunk Enterprise Security SME Hybrid/Contract

Location: 1600 Solana Blvd Suite 400 Westlake Texas 76262

Duration: 6 month SOW to start out

Visa status: anything stable, USC and GC preferred

Years Splunk

Years Splunk security

Experience with Splunk SA-LDAP search listed on the resume

Experience with Splunk UF ADMON listed on the resume

Experience with CSV files listed on the resume

In your own words (not copied and pasted from the resume, or resume jargon) what makes this candidate a great match

Splunk Enterprise Security SME Hybrid/Contract

seeking a Splunk Resource who will work with the enterprise team to perform consulting services with the existing Splunk Enterprise Security environment.

Resources will perform duties as assigned by enterprise Network Security/Network Intelligence team required to support new data sources and detections in Splunk Enterprise Security

Define/implement assets and identities for Enterprise Security

Implement/configure new detections for Enterprise Security

This job will be onsite 3 days per week in the Dallas-Fort Worth area.

6 month project, could potentially be extended longer.

1. Develop and deploy Enterprise Security assets and identities

Review requirements and available data sources for assets and identities

Onboard and normalize identified data

Validate data to ensure viability

Create specific implementation of assets and identities for Enterprise Security using one of the following sources:

Splunk SA-LDAP search

Splunk UF ADMON

Customer provided CSV files

2. Create new use cases for detections

Review requirements to determine new detection criteria

Verify required data is being ingested by the platform for use in new detections

Assist with the configuration of correlation searches, dashboard searches and Enterprise Security content

3. Develop and deploy detections for Enterprise Security

Review detection use cases

Develop, deploy and enable new detections in the Splunk Enterprise Security system

4. Enterprise Security tuning activities

Identify searches to modify based on daily notables and execution time

Review search implementations and develop alternatives for implementation

Edit search language to reduce alert volume and tune performance

5. Provide status reports of accomplishments for items above

Tasks above will be performed throughout the service term.

Keywords: information technology green card

[email protected]
View all

Thu Jan 11 22:39:00 UTC 2024

To remove this job post send "job_kill 1007030" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

devyani@absoluting.com wrote:
From:

Devyani Kumari,

Absolute IT

devyani@absoluting.com

Reply to:   devyani@absoluting.com

Splunk Enterprise Security SME  Hybrid/Contract

Location: 1600 Solana Blvd Suite 400 Westlake Texas 76262

Duration: 6 month SOW to start out

Visa status: anything stable, USC and GC preferred

Years Splunk

Years Splunk security

Experience with Splunk SA-LDAP search listed on the resume

Experience with Splunk UF ADMON listed on the resume

Experience with CSV files listed on the resume

In your own words (not copied and pasted from the resume, or resume jargon) what makes this candidate a great match

Splunk Enterprise Security SME  Hybrid/Contract

seeking a Splunk Resource who will work with the enterprise team to perform consulting services with the existing Splunk Enterprise Security environment.

Resources will perform duties as assigned by enterprise Network Security/Network Intelligence team required to support new data sources and detections in Splunk Enterprise Security

Define/implement assets and identities for Enterprise Security

Implement/configure new detections for Enterprise Security

This job will be onsite 3 days per week in the Dallas-Fort Worth area.

6 month project, could potentially be extended longer.

1. Develop and deploy Enterprise Security assets and identities

Review requirements and available data sources for assets and identities

Onboard and normalize identified data

Validate data to ensure viability

Create specific implementation of assets and identities for Enterprise Security using one of the following sources:

Splunk SA-LDAP search

Splunk UF ADMON

Customer provided CSV files

2. Create new use cases for detections

Review requirements to determine new detection criteria

Verify required data is being ingested by the platform for use in new detections

Assist with the configuration of correlation searches, dashboard searches and Enterprise Security content

3. Develop and deploy detections for Enterprise Security

Review detection use cases

Develop, deploy and enable new detections in the Splunk Enterprise Security system

4. Enterprise Security tuning activities

Identify searches to modify based on daily notables and execution time

Review search implementations and develop alternatives for implementation

Edit search language to reduce alert volume and tune performance

5. Provide status reports of accomplishments for items above

Tasks above will be performed throughout the service term.

Keywords: information technology green card

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 0

Location: ,