Job Description :
VDart We are a Global Information Technology Services & Workforce Solutions firm headquartered out of Atlanta, GA with presence in US, Canada, MX, UK, Belgium, Japan & India. Founded in 2007, Our team of over 2550+ professionals continually create impact for our customers worldwide in solving complex technology challenges with cutting edge technologies. We specialize in providing the Fortune 1000 companies, niche hard to find skills in technologies including Social, Mobile, Big Data Analytics, Data Sciences, Cyber Security, IoT, Cloud, Machine Learning, and Artificial Intelligence. With delivery centers in the UK, Mexico, Canada, and India, we provide global workforce solutions to our customers covering EMEA, APAC & Americas. VDart is an award-winning organization recognized by Inc 5000 Hall of Fame; Atlanta Business Chronicle*s Fastest Growing Companies; NMSDC*s National Supplier of the Year; Ernst & Young*s Regional Entrepreneur of the Year and more. Position : Splunk Platform Engineer Location : Remote Duration : Contrat Job Descriptions: As a Splunk Platform Engineer, Your responsibility is going to be to get all the agreed data from technology or application in scope and make sure data is being received by our SIEM solution and with all important attributes. Excellent communication skills are mandatory for this type of tasks, as a lot of engagement with the internal customers happens on a daily basis. You will be responsible for data mapping according to the CIM and according to the Use-Case development requirements. You are going to design the structure of use-cases with the customers and act as a subject matter expert for the customers being on-boarded to SOC. Essential Knowledge, Skills and Experience understanding of Splunk architecture components, include search head clustering, indexer clustering, deployment server and monitoring console understanding of configuration files and relationship between GUI configuration and backend configuration file impact understand the difference between Universal forwarders and Heavy forwarders understanding of SPL is a benefit understanding of CIM is a must an understanding of error messages and logs displayed by various software ability to troubleshoot, diagnose and solve issues independently self-learner, ability to document learning as experience is gained understanding of network protocols and topologies strong technical troubleshooting and analytical skills experience with platform and application automated deployment and version control software e.g. (Ansible, Git, Bitbucket) Fix whatever platform related issues independently Make sure the platform is stable and avoiding any downtime. Understanding of device & security logs and able to extract data from logs using regular expressions. Good hands on exposure of SOAR platform like Siemplify, Demisto, Phantom, Ansible Excellent understanding of Security Incident detection and remediation workflow. Hands on Experience in writing custom scripts for task automation. Experience of Integrating tools with SOAR platform. Designing in creating workflows in SOAR platform. a knowledge of the MITRE ATT&CK framework is a plus for you ability to prioritise workload excellent written and spoken English calm and logical approach If your skills match our requirements, please send your resume to . Be sure to reference the job number and title in the subject line. Referral Program: Ask our recruiting team about how you can be a part of our referral program. If you refer a candidate with this background and if the candidate accepts the role our team pays a generous referral. We are keen on networking and establishing a long-term, mutually beneficial partnership with you. We are Equal Employment Opportunity Employer. VDart Inc Alpharetta, GA Follow us on Twitter for the hottest positions: @VDart_Jobs Follow us on Twitter: @vdartinc