You will design, develop, and maintain Splunk solutions to support cybersecurity initiatives.
Responsibilities
- Write complex Splunk Search Processing Language (SPL) queries to extract, transform, and analyze data.
- Build and maintain custom dashboards and visualizations for security monitoring.
- Integrate diverse data sources into the Splunk platform to ensure comprehensive coverage.
- Develop and manage playbooks and automated workflows using SOAR platforms, specifically Cortex XSOAR.
- Collaborate with cross-functional teams to interpret security data and enhance incident response capabilities.
Required Skills
- Expert-level proficiency in Splunk Search Processing Language (SPL).
- Proven experience creating custom Splunk dashboards and visualizations.
- Strong ability to understand, ingest, and integrate various data sources into Splunk.
- Proficiency in Python and/or PowerShell for automation and scripting tasks.
- Hands-on experience with Security Orchestration, Automation, and Response (SOAR) platforms.
- Specific experience with Cortex XSOAR is highly desired.
- Minimum 10+ years of professional experience in relevant technical roles.
- Strong problem-solving skills with attention to detail.
Preferred Skills
- Relevant certifications in Splunk and cybersecurity.
- Experience integrating SOAR platforms with Splunk and other security tools.