Enterprise Security Analyst (Splunk)

at  Cubane Solutions AB

Stockholm, Stockholms län, Sweden -

Start DateExpiry DateSalaryPosted OnExperienceSkillsTelecommuteSponsor Visa
Immediate07 Jul, 2024Not Specified08 Apr, 2024N/AConfidentiality,Dashboards,Soar,SplunkNoNo
Add to Wishlist Apply All Jobs
Required Visa Status:
CitizenGC
US CitizenStudent Visa
H1BCPT
OPTH4 Spouse of H1B
GC Green Card
Employment Type:
Full TimePart Time
PermanentIndependent - 1099
Contract – W2C2H Independent
C2H W2Contract – Corp 2 Corp
Contract to Hire – Corp 2 Corp

Description:

ASSIGNMENT DESCRIPTION

  • Data Model ingestion, architecture and best practices.
  • Risk-based alerting.
  • Custom event based correlation searches.
  • Improve true positive detections and minimize false positives.
  • Utilization of Splunk curated detections.
  • Threat Intelligence workflows.
  • Threat Intelligence feeds and integration of Splunk ES with other security tools (TIP, SOAR, etc.).
  • Security workflows.

TECHNICAL SKILLS

  • Proven professional experience in administering, designing or utilizing Splunk Enterprise Security app for effective detection, alerting and security workflows.
  • Certifications on Splunk Enterprise Security Certified Admin or Splunk Certified Cybersecurity Defense Analyst is a huge plus.
  • Highly skilled in SPL queries, dashboards, alerts and various Splunk knowledge objects.
  • Experience in working with other security platforms and tools that can be integrated with Splunk such as Threat Intelligence Platform and SOAR.
  • Ability to work independently and as part of a team.
  • You are open and easy-going, yet with a natural respect towards privacy and confidentiality.
  • You are comfortable in a sometimes stressful and priority driven environment.

Responsibilities:

Please refer the Job description for details

REQUIREMENT SUMMARY

Min:N/AMax:5.0 year(s)

Information Technology/IT

IT Software - Network Administration / Security

Reporting

Graduate

Proficient

1

Stockholm, Sweden