\nPosition Scope:\n\nThe SIEM SME leads in architectural design, specification, and maintenance of Splunk Security products and services.Candidates must have backgrounds in network planning and design, implementation, and operations. SIEM SMEs apply business and technology skills with structured methodologies to deliver complex solutions to the customer.\n\nWe are looking for professionals (with 6-9 years of experience) who can fulfill the following criteria:\n\n\n\n* Experience in Information Security, Risk Management, Infrastructure Security and Compliance\n\n\n\n\n\n\n* Security device installations, configuration and troubleshooting (e.g., firewall, IDS, etc.)\n\n\n\n\n\n* Hands on experience in supporting AWS and Azure Assets, especially supporting Splunk deployment in AWS/Splunk ES as a service\n\n\n\n\n\n* Experience in deploying different type of forwarders and Apps\n\n\n\n\n\n* Deep knowledge in AWS services and serverless architecture\n\n\n\n\n\n* Expertise in UNIX, Linux, and Windows - able to tear down and rebuild a host system\n\n\n\n\n\n* Experience with Database installation and configuration is required and Oracle experience is a plus\n\n\n\n\n\n* Exploit and detection analysis skills, including ability to analyze logs for useful information and patterns\n\n\n\n\n\n* Install, configure, tune, and maintain the Splunk SIEM components\n\n\n\n\n\n* Primarily focus on content creation regarding advanced threat analysis (rules, variables, trending, watch lists, etc) of incoming data and for self-monitoring of the solution itself.\n\n\n\n\n\n* Perform supporting tasks such as system hardening, high availability configurations, and developing backup strategies.\n\n\n\n\n\n* Assist with the creation of detailed deployments plans, architectural drawings and operation manuals.\n\n\n\n\n\n* Assist with event source auditing configurations, integration with various security platforms, network devices, and systems\n\n\n\n\n\n* Expert in development of Regular Expression (REGEX)\n\n\n\n\n\n* Good understanding of Infrastructure Security and its impact on Security Operations, Vulnerabilities, Reporting, Analytics and Monitoring\n\n\n\n\n\n* Good understanding and experiences with Infrastructure Security, Risk assessment and Security Information and Event Management\n\n\n\n\nNice to Have Skills/Qualifications:\n\n\n* Experience working in a diversified, virtual environment\n\n* Administrational tool development and maintenance\n\n* Desirable to have some certifications such as CISSP, ITIL, CISA, CISM and GIAC-GCIA\n\n* Desirable to have some advanced Certification from SIEM vendor on products such as HP ArcSight or RSA envision\n\n\n\n\nIf you, or a friend, match these requirements, please send in your resumes to
[email protected], marking “Splunk SIEM-Stackoverflow” in the subject line\n\nAccenture is an equal opportunities employer and welcomes applications from all sections of society and does not discriminate on grounds of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law \n\n#Salary and compensation\n
No salary data published by company so we estimated salary based on similar jobs related to Executive and Serverless jobs that are similar:\n\n
$75,000 — $115,000/year\n
\n\n#Benefits\n
๐ฐ 401(k)\n\n๐ Distributed team\n\nโฐ Async\n\n๐ค Vision insurance\n\n๐ฆท Dental insurance\n\n๐ Medical insurance\n\n๐ Unlimited vacation\n\n๐ Paid time off\n\n๐ 4 day workweek\n\n๐ฐ 401k matching\n\n๐ Company retreats\n\n๐ฌ Coworking budget\n\n๐ Learning budget\n\n๐ช Free gym membership\n\n๐ง Mental wellness budget\n\n๐ฅ Home office budget\n\n๐ฅง Pay in crypto\n\n๐ฅธ Pseudonymous\n\n๐ฐ Profit sharing\n\n๐ฐ Equity compensation\n\nโฌ๏ธ No whiteboard interview\n\n๐ No monitoring system\n\n๐ซ No politics at work\n\n๐
We hire old (and young)\n\n