Posted On Apr 10, 2024
Job Description
Job Description
Key Responsibilities: Engineer, implement & support SIEM platforms ArcSight, Splunk Enterprise, Splunk Enterprise Security, Splunk UBA and Splunk Phantom in public cloud and on-premise datacenters Incident & Problem Management, Change & Release Management, Vendor Management, Capacity Management functions for the platforms Provide 24X7x365 production support for the platforms as part of the team to ensure smooth operations, system function & system health Proficiency developing log ingestion and aggregation strategies On-board new data sources into Splunk, analyze the data for anomalies and trends and build dashboards highlighting the key trends of the data. Contribute to product architecture, engineering & roadmap for platforms supported by SIEM Engineering team Develop security-focused content for Splunk, including creation of complex threat detection logic and operational dashboards Work with cross-functional teams to proactively improve on existing integration automation/workflows. Maintain up-to-date knowledge of technology standards, industry trends, emerging technologies, and cyber security best practices. Ensure technical issues are quickly resolved and help implement strategies and solutions to reduce the likelihood of recurrence. Passionate about data to drive information based security analytics
Key Responsibilities:
Desired Candidate Profile
Qualifications :Undergraduate
All product names, logos, and brands are property of their respective owners.