The #1 Site for IT and Engineering Jobs - search all IT and Engineering  jobs.
Mjp1vl6v1qfgrqpyz7r

Threat Analyst

Job Description

The primary role of this individual will be help tune Splunk’s Enterprise Security and UBA. The tuning process includes rule validation, macro use case tuning of newly added use cases (determining if events can be reduced by underlying application configuration changes) and micro false positive tuning. Additional duties include content management use case rule creation.  The ideal candidate will have 1+ years’ experience in the following areas.

•General networking concepts & administration

oTCP/IP

oPCAP analysis

•General cyber security knowledge

oEvent of interest research: Domain Tools, whois, virustotal, malware reports…etc

oPrior intrusion detection experience with a siem (home grown, Qradar, ArcSight…etc)

Job Requirements

•Splunk experience

oES experience (nice, but not required)

oUBA tuning (nice but not required)

oNotable creation (nice, but not required)

Job Snapshot

Location US-TX-Houston
Employment Type Full-Time
Pay Type Year
Pay Rate N/A
Store Type IT & Technical
Apply

Company Overview

American Cybersystems, Inc. (ACS Group)

ACS Group provides services to Fortune 1000 companies across various industry verticals. With a proven track record of managing project demands while improving the efficiency, productivity and profitability of new and existing projects through process improvement, ACS Group is consistently recognized for identifying and implementing strategic solutions that create and preserve long-term business value. Learn More

Contact Information

US-TX-Houston
Icon-social-facebookIcon-social-linkedinIcon-social-twitter
Snapshot
American Cybersystems, Inc. (ACS Group)
Company:
US-TX-Houston
Location:
Full-Time
Employment Type:
Year
Pay Type:
N/A
Pay Rate:
IT & Technical
Store Type:

Job Description

The primary role of this individual will be help tune Splunk’s Enterprise Security and UBA. The tuning process includes rule validation, macro use case tuning of newly added use cases (determining if events can be reduced by underlying application configuration changes) and micro false positive tuning. Additional duties include content management use case rule creation.  The ideal candidate will have 1+ years’ experience in the following areas.

•General networking concepts & administration

oTCP/IP

oPCAP analysis

•General cyber security knowledge

oEvent of interest research: Domain Tools, whois, virustotal, malware reports…etc

oPrior intrusion detection experience with a siem (home grown, Qradar, ArcSight…etc)

Job Requirements

•Splunk experience

oES experience (nice, but not required)

oUBA tuning (nice but not required)

oNotable creation (nice, but not required)

Sologig Advice

For your privacy and protection, when applying to a job online: Never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction.Learn More

By applying to a job using sologig.com you are agreeing to comply with and be subject to the workinretail.com Terms and Conditions for use of our website. To use our website, you must agree with theTerms & Conditionsand both meet and comply with their provisions.
Threat Analyst Apply now