SIEM Specialist

SIEM Specialist

The SIEM Specialist will support the work to onboard additional log sources in to the Client’s vendor managed Security Information Event Management (SIEM) platforms (Splunk and Sentinel), as well as support the development of new use cases, and troubleshooting existing use cases. This position will support the Manager of Cyber Defense.

The SIEM specialist will also provide advice and support and will act as a subject matter expert in implementing, modifying, and troubleshooting SIEM log parsing, log ingestion, and use case/report creation in both Splunk and Sentinel SIEM solutions.

The client expects the candidate to have demonstrated experience in implementing, deploying, configuring, modifying, and troubleshooting SIEM solutions, including heavy forwarders, indexers and search heads, as well as demonstrated experience in creating/modifying use cases within SIEM solutions. While not a requirement, certifications related to trending ...