The Goal, an IT Staffing firm is seeking a Splunk Content Developer that will be a part of an Enterprise Security in Morrisville North Carolina
The Splunk Content Developer is responsible for tuning and configuration of Splunk for Enterprise Security (ES) services, developing use cases with CISO end users to build content and assist in developing advanced security use cases.
Configure incident response and remediation workflows for ES
Develop and Implement Actionable Alerts and Workflow for Splunk as a CISO Monitoring tool
Develop and Implement Apps & Knowledge Objects (KO) like Dashboard, Reports, Data Models
Work with the Splunk Architect/Admin to promote private KO to Global KO
Assist and/or train CISO Splunk Engineering team on Data Lifecycle Support
Assist and/or train CISO Engineering team and analysts on Content Development
Develop and implement automation and efficiencies with Splunk and CISO workflow
Provide Analyst training and workshops on using Splunk
Review new content, alerts and data sources with CISO Analysts.
Must possess a minimum of a Bachelor’s Degree in Computer Science, Information Technology or Information Security (Master’s Degree preferred).
Prior job experience creating and Developing Content/Dashboards in Splunk
Extensive experience (5+ years) in security operations and/or related IT operational functions
CompTIA Security + CPTE – Certified Penetration Testing Engineer or CEH – Certified Ethical Hacker Certified Information System Security Professional (CISSP)