Greetings from VBeyond Corporation!
VBeyond has been consistently recognized by renowned clients for being their trusted staffing partners for almost one and half decades.
I am sorry if am bothering you with your busy schedule, we are looking for a Splunk developer in Gaithersburg, MD, and not sure if you are looking for a new project.
If you do then please share your updated resume with contact information or kindly help me with a suitable reference that would be a great help.
SIEM Splunk developer. Please see details below
Position - Splunk developer
Duration: 6 months contract-to-hire
Location: DMV area – will work our of Gaithersburg, MD office
TOP SKILLS:
· Splunk - development, not engineers.
· SOC experience
· Communication- able to clearly communicate both written and verbally
JOB SUMMARY
Serves as Splunk developer responsible for creating Security Information and Event Management (SIEM) content to monitor security events and detect potential security incidents across the Marriott enterprise. Responsible for SIEM content management, content creation, rule tuning, reporting and alert creation. Produces high-quality documentation pertaining to monitoring and content creation tasks. Leverages knowledge of monitoring, analyzing, detecting, and responding to cyber events and incidents to develop and implement effective monitoring and alerting for information systems and networks. Leads collaboration sessions for security monitoring use case identification and scoping with partners in the cyber security tower and other business units.
CANDIDATE PROFILE
Education and Experience
Required:
• Bachelor’s degree in Computer Sciences or related field or equivalent experience/certification
• 5+ years of information technology experience
• 5+ years of experience in some or all of the following:
o Incident Response or Security Operations Center (SOC) teams
o Splunk products
o Scripting or programming language, including Python
o API development and integration
o Other logging platforms (ArcSight, SumoLogic, QRadar, etc.)
Preferred Skills/Experience:
• Current information security certification, including Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP)
• Experience with architecting, implementing, and operating Splunk or other big data platforms
• Experience with IDS, IPS, and SIEM appliance architecture, operations, and management
• Experience working in a globally distributed enterprise environment
• Experience with monitoring use case implementation methodologies
• Knowledge of Linux, Unix and Microsoft operating systems
• Knowledge of TCP/IP protocols
• Experience using regex (regular expressions) with a scripting language (nix shells, python, c++, ruby, etc.) is acceptable
• Excellent communication skills and problem-solving ability
• Troubleshooting skills and strong technical learning aptitude
CORE WORK ACTIVITIES
• Creating and performing review and validation of daily compliance reports to track business as usual and out of policy activities.
• Working with the Cybersecurity Incident Response Team and Threat Intelligence Team to identify content improvements.
• Assisting the Cybersecurity Incident Response Team and Threat Intelligence Team with searches by acting as an expert in Splunk Search Language.
• Provides input to the overall SIEM security services architecture, governance model.
• Provide technical oversight, standardization and validation of the effectiveness of SIEM content service.
• Participates in efforts to research, design and implement components in the SIEM content development space that are standards-based, high-performing, highly available and secure.
• Educates internal and external users of security technologies to continually improve the knowledge and skill-base of the organization on how best to operate and support the technology and security services.
• Develops highly-extensible, scalable, and SIEM content services that can be adopted and integrated in a wide range of Cybersecurity use cases.
• Contributes to a culture of excellence in technical security threat management and incident response.
• Participates in the evaluation and selection of security service products.
• Supports governance based on best practices and facilitates proper alignment to projects and major initiatives
• Supports analysis of the current environment to detect critical deficiencies and recommends solutions for improvement.
• Supports analysis of technology industry and market trends to determine their potential impact on security services architecture.
• Utilizes capability modeling to align systems strategy and planning with business strategy and goals.
• Consults with project teams to identify when it is necessary to modify infrastructure and security services to accommodate project needs.
• Consults with architecture teams to identify when it is necessary to modify the technical architecture to accommodate infrastructure and security needs.
• Participates in the documentation of developed content, architecture and analysis work.
• Supports, implements and promotes standard configuration and change management, processes and practices.
Thanks & regards
Mithlesh Singh
Recruitment Lead
Desk: 206-899-1937 | Cell/Text: 206-278-5924
Email- Mithleshs@vbeyond.com
Hangout & Skype- mithlesh.vbeyond@gmail.com
Note: VBeyond is fully committed to Diversity and Equal Employment Opportunity.
Disclaimer: We respect your Online Privacy. This is not an unsolicited mail. Under Bill S 1618 Title III passed by the 105th US Congress this mail cannot be considered Spam as long as we include Contact information and a method to be removed from our mailing list. If you are not interested in receiving our e-mails then please reply to mithleshs@vbeyond.com subject=Remove. Also mention all the e-mail addresses to be removed which might be diverting the e-mails to you. We are sorry for the inconvenience.
No comments:
Post a Comment
Thanks
Gigagiglet
gigagiglet.blogspot.com