Job Description :
Position : Splunk Enterprise Security
Location:Tulsa,ok
Note:GC,USC,.GC EAD
This is a long-term, contract position (12+ months I’ve included the details below. We are open to letting this candidate work remotely. They will need to come onsite for their first week to get acquainted with QT/ the team. We estimate that this person will continue to come onsite for a few days each month from there (as needed for meetings, initiatives, projects, etc.
I asked the manager for specific details about what this person will be working on. He informed me that we currently have 148 use cases and the list is growing. This person will be churning through those use cases and it should be a pretty predictable set of work.
Looking for Excellent communication skills. This person needs to have Splunk ES and Business Intelligence or Analytics skills.
· Extensive experience in SPL, Knowledge Objects, Apps, Data Models and reporting.
· Understanding of MS SQL Databases, SQL query creation and APIs for data acquisition or exchange.
· Expert knowledge of scripting, including Python and Powershell, and regex.
· Experience in developing Splunk queries and dashboards targeted towards an information security, IT operations or business context.
· Capable of evaluating log sources for valuable data in an information security, IT operations or business context.
· Experience in developing Splunk ES correlation searches or experience working with ES.
· Experience in working in AWS, Azure, or other cloud environments.
· In-depth experience with general IT security concepts, network security and monitoring practices/methodologies
· Advanced knowledge about Splunk architecture and various components (indexer, forwarder, search heads, deployment server), Heavy and Universal forwarders.
· Work with the data owner to develop visualizations and activity based on identified use cases.
· Experience working with large datasets to generate insights by using Splunk at scale.
· Must have strong written and communication skills. Technical documentation is critical in this role.