Posted 2 years ago
We’re looking for a Splunk SME! Reach out if you’re interested and feel free to refer friends/colleagues!
Type of Employment: Contract
Title: Splunk SME
Term: 12-month Contract
Location: Remote for now – Mississauga
Job ID number: C13408
Brief description of duties:
- Background: We are moving off our current SIEM solutions to a Splunk SAAS solution.
- We require a technical resource who has had previous experience with the Splunk security monitoring solution. The resource will be required to:
- Configure the Splunk SAAS environment
- Deploy and configure Splunk agent/universal indexers/connectors
- Deploy and configure Splunk heavy forwarders
- Troubleshoot any integration issues.
- The resource will need to have experience:
- With previous Splunk migration projects, have a good understanding of the Splunk Security monitoring solution; and
- Developing security use-cases, queries, etc.
- The ideal candidate would have and previous hands-on experience with Splunk SIEM and in-depth knowledge of the challenges involved with the integration and operationalization of this solution within an enterprise environment