Please note that this is a 1 year contract position.
Configure incident response and remediation workflows for ES
Develop and Implement Actionable Alerts and Workflow for Splunk as a CISO Monitoring tool
Develop and Implement Apps & Knowledge Objects (KO) like Dashboard, Reports, Data Models
Work with the Splunk Architect/Admin to promote private KO to Global KO
Assist and/or train CISO Splunk Engineering team on Data Lifecycle Support
Assist and/or train CISO Engineering team and analysts on Content Development
Develop and implement automation and efficiencies with Splunk and CISO workflow
Provide Analyst training and workshops on using Splunk
Review new content, alerts and data sources with CISO Analysts.
Extensive experience (7+ years) in information security operations and/or related IT operational functions
Must possess a minimum of a Bachelors Degree in Computer Science, Information Technology or Information Security (Masters Degree preferred).
CERTIFICATIONS: (One or more required)
CompTIA Security +
CPTE - Certified Penetration Testing Engineer or CEH - Certified Ethical Hacker
Certified Information System Security Professional (CISSP)
Applicants must provide their phone number. Reference Job Number A26
San Francisco, CA, 94159Contact