improvement of correlation rules Develop and maintain dashboards, reports, and alerts Create Splunk Knowledge Objects to address customers needs in context of using Splunk as security tool Prepare correlation search tests, conduct tests, and document evidence from test that shows correlation search addresses scenario described in use case Responsible for the creation of procedures, high-level/low … we have a healthy balance between defect resolution and new features Qualifications: Technical Skills: In depth experience in development and maintenance of SIEM use cases Fluent in Splunk's searchprocessinglanguage (SPL) Excellent knowledge of Splunk Enterprise and Splunk Enterprise Security Sound knowledge about Splunk Common Information Model and log normalization using Data Models Solid understanding More ❯
tuning alerts to reduce noise while ensuring critical issues are captured. To be able to collaborate with Technical Recovery Managers to develop automated alert routing. Hold advanced knowledge of SplunkSPL, dashboard development, report scheduling and app management. Proficient in crafting service-level dashboards, setting up custom metrics, and conducting root cause analysis using advanced technology. Analysis & Reporting: Conduct proactive More ❯
Location(s): UK, Europe & Africa: UK: London BAE Systems Digital Intelligence is home to 4,500 digital, cyber, and intelligence experts. We work collaboratively across 10 countries to collect, connect, and understand complex data, enabling governments, armed forces, and commercial More ❯
license management, data integration, data transformation, field extraction, event parsing, data preview, and Apps management of Splunk platform. Standardize Splunk server builds, configuration, deployment, and troubleshooting of Splunk components; search heads, indexers, universal forwarders, heavy forwarders and maintenance across a variety of UNIX and Windows platforms. Splunk ITSI and DBConnect etc., configurations and setup. Leverage programming skills in Perl … Splunk server, forwarder problems and issues. Monitor the Splunk infrastructure for capacity planning and optimization. Upgrade/patch, and monitor all SIEM related tools and products Be a Splunklanguage (SPL) expert Understanding of SIEM & logging fundamentals. Develop dashboards, report, and alerts using data feeds ensuring data quality and execution of customer's use cases. Act as the SplunkMore ❯
