Splunk Admin

Job Description:

Role :     Security Architect          Role Description :     Define the security architecture, ensuring that it meets the business requirements and performance goals.                                                                                                                                                                                                                                                                                                                                                                                                                                              Must have Skills :     Splunk          Good to Have Skills :      Splunk Security Information and Event Management (SIEM)          Job Requirements :     Key Responsibilities :     Analyze potential infrastructure security incidents to determine if incident qualifies as a legitimate security breach   Perform network incident investigations, determining the cause of the security incident and preserving evidence for potential legal action   Interface with technical personnel and other teams as required   Produce security incident reports and briefings to be distributed to the team lead and manager   Monitor devices for potential threats  Appropriately inform and advise mana          Technical Experience :     At least 1-4 years of experience in Information Security, Risk Management, Infrastructure Security and Compliance  Good understanding of Security Information and Event Management concepts and hands-on experience on any SIEM products such as Splunk, HP ArcSight, RSA Analytics, McAfee ESM etc          Professional Attributes :     Basic level of expertise in UNIX, Linux, and Windows   Exploit and detection analysis skills, including ability to analyze logs for useful information and patterns   Good understanding of Infrastructure Security and its impact on Security Operations, Vulnerabilities, Reporting, Analytics and Monito          Educational Qualification:     BE          Additional Info :