Splunk Specialist - Detroit, MI at Digital Technology Solutions
Detroit, MI
About the Job
DTS is looking for Splunk Specialist for our Direct Client position based in Detroit, MI
JOB DESCRIPTION:
Splunk:
- Experienced Splunk professional with over eight years in Security Orchestration, Automation, and Response (SOAR), specializing in Cortex XSOAR, for clients.
- Proficient in integrating Cortex XSOAR with Splunk and other security tools to streamline incident response
- Skilled in deploying and configuring XSOAR playbooks, designing custom Splunk dashboards for real-time insights, and utilizing Splunk Search Processing Language (SPL) for advanced querying, data analysis, and security event monitoring
Cortex XSOAR:
- Cortex XSOAR Certified Automation Engineer
- Expert in integrating XSOAR with Splunk to automate incident response, develop custom playbooks, and streamline security operations
- Configured XSOAR to ingest and correlate security data from Splunk, enhancing threat detection
- Designed and configured Cortex XSOAR workflows to automatically generate and assign tickets based on Splunk security alerts, streamlining incident management; built automated incident response solutions using Cortex XSOAR and Splunk, enabling rapid detection and mitigation of security threats
Python/PowerShell:
- Expertise includes developing and maintaining custom automation scripts using Python and PowerShell to enhance Splunk functionality and optimize operational efficiency
- Developed Python scripts to automate data ingestion from various sources into Splunk; created PowerShell scripts to streamline Splunk deployment tasks, including installation, configuration, and updates
Certifications:
- Splunk Certified User
- Cortex XSOAR Certified Automation Engineer
- Certified Ethical Hacker
- CompTIA Security +
Technical Skills:
- Security Software: Tanium, Crowd Strike, Nessus, Qualys Guard, Fore Scout Force point CASB, Prisma cloud, Metasploit, CIS workbench (CIS benchmarks), Snort, BASE
- Rapid 7: Nexpose, Insight VM (Insight Agent), Insight AppSec
- Qualys: Vulnerability Management, Policy Compliance, Cloud Agents, Asset Management
- Event Management: Splunk, Log Rhythm
- Firewall Assurance: Skybox security solutions
- Cloud Technologies: AWS, Azure
- Network Assessment: NMAP, Wireshark IBM Security Vulnerability Management (PSIRT) VirtualBox, VMware. NIST SP 800-171, ISO 27001/31000, HIPPA, HITRUST CSF, PCI DSS
- Pen-Test Tools: Metasploit, NMAP, Wireshark and Kali
- DLP: Symantec DLP
- Security Technologies: MacAfee EPO, Q Radar, Splunk
- Vulnerability Management Tools: Nessus, Qualys, AWS Inspector, Azure Security Centre, Rapid 7, Tenable IO
- Operating Systems: Kali Linux, Windows, MacOS
- DAST and SAST tools: IBM App Scan Enterprise (ASE), HP Web Inspect, Qualys, Burp Suite Pro, Acunetix, SQLMAP
- Programming Languages: Python, Java, SQL
DTS offers excellent compensation package.
Contact:
Kanika Narula
Digital Technology Solutions
248-243-6084
Digital Technology Solutions
248-243-6084