Job Description :
Needs splunk engineer - someone who has dev/admin background and very hands on. They have splunk infrastructure, but want to make sure the environment is up to date because they have some big initiatives with Splunk coming up regarding building security dashboards. Splunk exp in general is OK, but if they have hands on the splunk side and know the log sources, security side / dashboarding and creating alerts that would be the perfect candidate. Will start with phone screen.
Skills:
Expert level hands on experience with log management tools such as Splunk.
Medium-level hands on experience with tools such as DLP and IPS.
Strong in operational processes.
Security Operations Center experience a plus
Some level of experience working with security monitoring, and security incident/event management tools is a plus
Experience in security orchestration and automation a plus
Experience in any of the public clouds – AWS, Azure, is a plus
Travel requirements =25% that would include GSO all hands meetings, team offsite meetings, training and client facing presentations
Security certifications are a plus (CISSP, CISM, CISA, SANS, Security+, etc)
Education:
Candidate must have 7+ years working in information security
College degree BS/MS in Computer Science preferred