Overview

THIS IS A DIRECT CLIENT REQ !

Those authorized to work WITHOUT sponsorship may please apply.

Reach Saakshi Sahni –

Email resumes directly to Saakshi Sahni at saakshi(AT)zilliontechnologies(DOT)com

Role: Sr. Splunk Administrator

2 Years ++ Ongoing role

Direct client

Role Description: The Splunk Administrator , you will be responsible for analyzing the most complex threats and act as an escalation point for other security analysts, managing Splunk implementations for managed security services customers, as well as use case creation, dashboards, tuning, and log source configuration.

responsibilities

– Be responsible for advanced security event detection and threat analysis for complex and/or escalated security events.

– Provide log/network/malware/device analysis and making recommendations for remediation of security vulnerability conditions.

– Validate log sources and indexed data, search through indexed data to optimize search criteria.

– Add Customer Context, eliminate noise and false positives, and develop trends and data models.

– Distill Customer intelligence feeds; use cases, trends and data models.

– Create custom alert schema, reports and custom dashboards.

Minimum Qualifications:

– 5+ years direct experience with Splunk Administrator.

– 7+ years of experience investigating network threats with advanced analysis experience of multiple attack vectors such as Malware, Trojans, Exploit Kits, Ransomware and Phishing techniques, APTs, etc.

– TCP/IP networking skills to perform packet and log analysis.

– Must be a motivated and customer-focused SIEM engineer who can work as a subject matter expert.

– Requires expert level understanding of SIEM platforms.

– Strong understanding of Splunk Use Case creation, Dashboards and Tuning.

– Strong Splunk Enterprise Security (ES) experience to include Index Design, Infrastructure, Data Collection, Deployment Management, Data Enrichment, Querying, Integration and Operations.

– Security Analysis experience to include incident classification, investigation and remediation.

– Must have, or be qualified to obtain, a government clearance at the Secret level.

Linux, Perl, Python scripting.

– Splunk Certification is a BIG ++

Please email resumes directly to saakshi(AT)zilliontechnologies(DOT)com ||

Thanks,

Saakshi Sahni

Director – Business Development

Zillion Technologies, Inc

Saakshi(at)zilliontechnologies(dot)com

Dial –

Please email resumes directly to saakshi(AT)zilliontechnologies(DOT)com ||

– provided by DiceTracking

To Apply: https://www.jobg8.com/Traffic.aspx?RG5w3cIptCq%2bJckNE0qUeQn