Splunk Developer

Splunk Developer

Location: Dallas, TX (hybrid)

Duration: 12+ Months

Mandatory Skill:

• Aplus in Security Dashboard
• Splunk Developer
• Threat Hunting Dashboard
• XML

Requirements:

• Development of a customized repository to house frequent queries utilized by the team.
• The repository should maintain a drop down selector related to specific use cases and corresponding queries.
• The repository must be designed for “ease of use” so investigators can quickly select the appropriate use case and query.
• Development of new use cases or queries.
• Customization of existing or new queries/searches.
• The creation of a Threat Hunting Dashboard with the ability to track investigator activity to prevent duplication of effort.
• The normalization of proxy logs.
• The developer must create documentation to support long term maintenance needs (updates, modifications, break fix).
• The developer must be flexible, willing to accommodate changes and support any new objectives that are identified.

As with any project based role, the developer must attend weekly meetings, develop a project roadmap and be prepared to provide progress reports & time estimates for task completion