Home

Splunk Engineer Security SME-Westlake, TXHybrid) local: usc or gc at Westlake, Ohio, USA

Email: [email protected]

From: vivek paliwal, kpg99 [email protected] Reply to:   [email protected]  Mention visa and location Only usc or gc Role                 :  Splunk Engineer Security SME Location         : Westlake, TX (Hybrid) Duration          : Long term Visa                   :  usc,gc Job Description:       Splunk Enterprise Security SME Will work with the enterprise team to perform consulting services with the existing Splunk Enterprise Security environment.         Resources will perform duties as assigned by enterprise Network Security/Network Intelligence team required to support new data sources and detections in Splunk Enterprise Security         Define/implement assets and identities for Enterprise Security         Implement/configure new detections for Enterprise Security LONG version - 1.  Develop and deploy Enterprise Security assets and identities Review requirements and available data sources for assets and identities Onboard and normalize identified data Validate data to ensure viability   Create specific implementation of assets and identities for Enterprise Security using one of the following sources: o Splunk SA-LDAP search o Splunk UF ADMON o Customer provided CSV files 2.  Create new use cases for detections Review requirements to determine new detection criteria Verify required data is being ingested by the platform for use in new detections Assist with the configuration of correlation searches, dashboard searches and Enterprise Security content 3.  Develop and deploy detections for Enterprise Security Review detection use cases Develop, deploy and enable new detections in the Splunk Enterprise Security system 4 . Enterprise Security tuning activities Identify searches to modify based on daily notables and execution time   Review search implementations and develop alternatives for implementation Edit search language to  reduce alert volume and tune performance 5. Provide status reports of accomplishments for items above Tasks above performed throughout the service term. C:  Strong experience integrating Splunk Enterprise Security product with other tools like AWS (also Azure, GCP is nice to have), Kubernetes, Open shift, MongoDB Keywords: cprogramm green card Texas

[email protected] View all

Fri Jan 12 21:58:00 UTC 2024

To remove this job post send "job_kill 1011214" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.




Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 73

Location: , Oregon