erre a pozícióra jelentkezik
With key markets in the Netherlands, the UK, and the US, as well as growth markets in China, Brazil, and Iberia, our international partner supports one of the largest financial services groups, by offering IT, finance, risk, model validation, actuarial, audit, and asset management services with the purpose of helping their customers to live their best lives.
Pozíció leírása / Job description- Work directly with Infrastructure and Application teams to align security and event applications with
predetermined SOC use cases that provides the intelligence necessary for investigations.
- Work within the Security Strategy to onboard the identified number of applications across all Business Units
(BU), provide direction and guidance to the Business when difficulties arise with streaming events into the SIEM.
- Assist in managing time resources and commitments with your customers to ensure onboarding activities are
completed on time and in scope.
- Splunk Core experiences with Deployment Server configuration experience
- Splunk Core experience with Infrastructure support knowledge (Indexers, Search Heads)
- HTTP Event Collector (HEC) experience for streaming to endpoints- SPL Query Language experience
- AWS – lambda, S3 format experience, Azure Cloud blob format experience for SaaS ingestion
- Unix / Linux OS experience, Next Gen Firewall experience, Endpoint Threat Detection experience
- Experience with proper source typing
- Familiarity with Syslog technology, RegEx and stream parsing experience
- Bachelor degree or equivalent training, education, and work experience
- 5 years of Splunk SIEM (Core, ES, etc) experience
Competitive salary
Comprehensive health package
Brand new office at an excellent location
Hybrid working
Opportunities for growth and advancement
A highly people centric, positive and supportive work environment
Lili Wenner
lili.wenner@randstad.hu