Splunk Architect

Overview

Remote
$70+
Full Time
Accepts corp to corp applications

Skills

Security Operations
Splunk
Standard Operating Procedure
Incident Management
GSEC
SBC
SIEM
Use Cases
GPEN
Cloud Computing
Change Management
CISSP
CISM
Cypress
Technical Support
Microsoft Windows
Agile

Job Details

Hello,
I hope you are doing great!

Role: Splunk Architect

Location: REMOTE

Overview:
Client needs a collaborate Splunk Architect who can migrate from Securonix to Splunk Cloud. Enterprise Security is part of the implementation; the customer wants to implement static and dynamic rules associated with this. Including around UEBA and any other risk behavior modules. They should be proficient with installing & customizing the Spunk Security framework. This person should have a solid understanding since they will lead Splunk Enterprise Security deployment and operationalization. SME will be charged with integrating sources, documentation and building dashboards within an agile environment.
Key Responsibilities:

  1. Must have 12 yrs SIEM yrs of experience w/ products like SPUNK.
  2. Architect & Migrate from Securonix to Splunk Cloud including Log Management and Data Analytical Platform in line with client deliverables inclusive of :
    • Create and maintain standard operating procedures, Create Detections & Write Parsers, technical documents and troubleshooting guidelines of security solutions.
    • Monitoring and tuning of managed technologies to optimize system performance
    • Configure and troubleshoot managed security devices.
    • Providing assistance to customer requests such as Log Source configuration, App installation, Data Parsing, Use Case Development and Troubleshoot complex issues for managed technologies
    • Responsible for managed technologies patching and updates
    • Execute highly technical changes, change windows, and client requests by following standard change management process.
  1. Must have previous experience providing Tier-III level technical support for SIEM, Log Management Platform and Data Analytical tools during business hours and non-business hours.
  2. Previous experience conducting System Health Checks on managed technologies and provide recommendations on performance improvements huge plus.
  3. Must have previous experience in security operations, incident management, or command center environment such including:
  4. The following are security certification are recommended: CISSP, CISM, GSEC, GIAC, GPEN

Thanks and Regards,

Hemanth Kanithi

Sr. Recruiter

3S Business Corporation (3SBC)

Direct:

Phone: Ext 521

Email:

Hangouts

3S Business Corporation
#16700 HOUSE HAHL RD BLDG 6B, Cypress, TX- 77433.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.