Splunk Service Engineer (Content Dev)

The Goal, an IT Staffing firm is seeking a Splunk Content Developer that will be a part of an Enterprise Security in Morrisville North Carolina

The Splunk Content Developer is responsible for tuning and configuration of Splunk for Enterprise Security (ES) services, developing use cases with CISO end users to build content and assist in developing advanced security use cases.

 

Responsibilities:

Configure incident response and remediation workflows for ES

Develop and Implement Actionable Alerts and Workflow for Splunk as a CISO Monitoring tool

Develop and Implement Apps & Knowledge Objects (KO) like Dashboard, Reports, Data Models

Work with the Splunk Architect/Admin to promote private KO to Global KO

Assist and/or train CISO Splunk Engineering team on Data Lifecycle Support

Assist and/or train CISO Engineering team and analysts on Content Development

Develop and implement automation and efficiencies with Splunk and CISO workflow

Provide Analyst training and workshops on using Splunk

Review new content, alerts and data sources with CISO Analysts.

 

 

 

Requirements:

Must possess a minimum of a Bachelor’s Degree in Computer Science, Information Technology or Information Security (Master’s Degree preferred).

Prior job experience creating and Developing Content/Dashboards in Splunk

Extensive experience (5+ years) in security operations and/or related IT operational functions

CompTIA Security + CPTE – Certified Penetration Testing Engineer or CEH – Certified Ethical Hacker Certified Information System Security Professional (CISSP)

Attach a resume file. Accepted file types are DOC, DOCX, PDF, HTML, and TXT.

We are uploading your application. It may take a few moments to read your resume. Please wait!