Splunk - SIEM

 

Momento USA is a global technology consulting, talent acquisition, and creative development firm that addresses clients' most pressing needs and challenges. We are currently looking for a Splunk – SIEM Enhancement

 

Position : Splunk – SIEM Enhancement

Locations: Dallas, TX & RTP,NC  - Onsite

Long Term

 

Role Responsibility

• Cisco SecOps (IDR Team)
• Subject matter authority for IDR process design; tabletop exercise participation; RCA workflow approval
• Cisco KMS / Keeper Teams
• Log format guidance; integration coordination for §3.3
• Cisco PCC SOC SNA alert integration approval and IDR workflow integration acceptance
• Cisco IC Change
• Management Team
• Integration acceptance for pre-deployment vulnerability workflow linkage
• Vendor Project Manager Delivery coordination, milestone reporting, risk escalation
• Vendor SIEM Engineers Splunk platform configuration, data pipeline implementation, dashboard, and alert development (§3.1–§3.4)
• Vendor Splunk ES SME / Detection Engineers
• Owner of all detection engineering work (§3.8): data quality monitoring, CIM optimization, OOTB and custom SPL detection
• Build, alert volume tuning, PCC playbook development, and knowledge transfer. Senior-level resource.

 

Thanks,

Adam Walker (Aquib)

Technical Recruiter

Momento USA | Exceeding Customer Expectations…

440 Benigno Blvd, Unit#A 2nd Floor. Bellmawr, NJ 08031

Interstate Business Park

Direct: ||  Tel :  Ext 1021; Fax:

Email:  ; Web: .

 

Note: Momento USA is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.