SIEM Data engineer

infrastructure
What you will be responsible for: Onboard cloud-native security logs (AWS, Azure, OCI), Infrastructure and business application security logs to Splunk/SIEM platform using Stib! Stream and various agents like Splunk UF, Grafana, Opentelemetry, Fluentbit/Fluentd. For this. you must
Collaborate with cross-functional teams to understand data integration requirements and design solutions using CRIBI stream and Splunk Enterprise
Configure and customize CRIBI, stream to efficiently route, filter & transform data streams from various infrastructure, applications and public cloud services
. On-boarding multi cloud native data sources into SIEM using CRIE & various integration strategies, highlighting the key trends of the data and data flows
Resolving technical issues and helping implement strategies and solutions to reduce the likelihood of recurrence
Education & Preferred Qualifications
Minimum Qualifications
.
Primary skillsets required are: Splunk data administration, Stjbl Stream, Gitops, (Gribl code deployed using Git Confluence/lira
Minimum 6+ years of platform engineering with DevOps experience with minimum bachelor's degree in Computer Science or Engineering 5+ years of experience log onboarding to logging platforms to support SIEM and Observability
2+ years of data pipeline platform implementation experience using tools like Splunk, Stikl, Eluentist/Eluenst & Kestordev Practical experience with Data Engineering for CIM compliance. A deep understanding of CI/CD tools and a strong desire to help teams release frequently to production with a focus on creating reliable high-quality results.
. Strong Stogs, experience Must have Splunk data and platform administration experience
Preferred Experience
Splunk certifications (eg. Splunk Certified Architect or Splunk Certified Consultant)
CRIBL certifications (eg. Cribi Certified Observability Engineer)
Experienced in administering Splunk Enteruri