Splunk Architect – SIEM solution from scratch

Splunk Architect – SIEM solution from scratch

We are seeking a Contractor to maintain and enhance the Enterprise Security Log Analysis and Security Information Event Management (SIEM) system. Activities include creation and maintenance of correlation logic to analyze log data to support network and system monitoring capabilities as well as developing analysis and reporting dashboards to visualize relevant analytical and operational information. The Contractor shall also implement daily health monitoring of corporate-wide log feeds for detection of loss of or newly available log sources. The Contractor shall provide support and expertise for onboarding new log sources/types and data normalization to effectively work with existing Cybersecurity Tools. Related tasks include conducting operation and maintenance of Enterprise Security Correlation and Logging solutions, including Systems Administration of applications and frameworks, to include deployment, break/fix, and tuning at both the application and user
experience level.
Subject Matter Expert in Splunk Data onboarding and normalization, with a history of implementation/ engineering a SIEM solution from scratch
3 years of progressive working experience as a computer specialist or a computer systems analyst
Bachelor’s degree or equivalence