SIEM Content DevelopersLocation: REMOTE
Posted On: 02/09/2021
Requirement Code: 43410
Skills & Experience:
Act as a Splunk Search Language (SPL) expert, developing network or endpoint-based anomaly detection alerting logic in SPL and building dashboards to visualize results.
Develop correlation rules and playbooks within Splunk, UBA , and Phantom SOAR Platforms to meet the overall objectives.
Develop SIEM, UBA, and Orchestration automation to process events for threat identification and alert generation in a shared environment.