Job Description
Splunk SIEM Specialist are responsible for designing, implementing, monitoring and managing the SIEM of an organization. This person must be creative and dominance over Splunk Technologies. Good documentation and reporting skills - Ability to work on multiple projects - Be flexible and able to multi task - Be creative - Have a general quest to learn and gain knowledge - Participate in teamwork
Requirements
- Dominance over Splunk components such as: Indexer, Search Head, Deployer, Master Cluster, .Deployment Server, HF, UF (Installing, Configuration and Troubleshooting) - Designing for Splunk. - Familiarity with Splunk work mechanisms such as: types of dashboards, reports, Pivot and ... - Familiarity with SIEM architecture and infrastructure - Responding to cyber events by SIEM - Familiarity with SPL language - Familiarity with the anatomy of logs and log analysis - Familiarity with the types of cyber-attacks and Countermeasure methods. - Work experience with IPS/IDS such as: Snort and Suricata or Zeek - Work experience with Anti-Viruses and EDRs - Familiarity and work experience in the field of Malware Analysis - Mastering the concepts of network security - Deep knowledge of TCP/IP networking - Preferably fluent in SANS SEC 555 concepts
Employment Type
- Full Time
Job Category
Seniority
Details
Employment type
- Full Time
Job Category
Educations
Seniority
