Job Details

Cyber Security/ Splunk Architect

NetSource, Inc.
Raleigh, North Carolina, United States
Please note that this is a 5 months contract position. The resource will work closely with the Manager, Threat Operations, Incident Response and the USPS Manager, CyberSecurity Engineering, Data Services and Security. This resource will be working with the Operations and Splunk teams to build Risk Based alerting rules within Splunk to improve monitoring. Reqauirements - 3+ years Splunk ES experience - 2+ yearsrsquo experience as a Splunk correlationRisk RuleRisk Based Alerting developer - Understanding of Risk Based Alerting (RBA) macros o Standardize users and systems o Scoring risk events o Attributing risk events - The candidate will be able to develop risk rules and risk incident rules to correlate and alert to significant cyber events. - The candidate will be able to develop custom dashboards specific to RBA to highlight risk detail, health analysis and risk suppression. - The candidate will be able to develop workflow actions to display details around a risk alert. - The candidate will hold strong communication and collaboration skills, both oral and written, with excellent interpersonal and organization skills along with the ability to succeed with remote management. - The candidate will need to be able to obtain a sensitive clearance. EDUCATION bull BS Degree in Information Security, Cybersecurity, Information Assurance, Risk Management, or equivalent work experience. CERTIFICATIONS (One or more desired) bull Security+, CISSP, CAP Applicants must provide their phone number. Reference job number A224.

Send application

Mail this job to me so I can apply later

Apply With CV

You are not logged in. If you have an account, log in to your account. If you do not have an account, why not sign up? It only takes a minute!

latest videos

Upcoming Events