Deloitte - Delhi, OH
posted 16 days ago
Full-time - Mid Level
Delhi, OH
Professional, Scientific, and Technical Services
About the position
As a Deputy Manager in our Cyber Team, you'll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. This role involves working with Splunk, where you will be responsible for administration, troubleshooting, and integration with various log sources. You will also develop custom use cases and create dashboards and reports using SPL queries and XML. The position requires a good understanding of information security and IT operations, as well as proficiency in client and server operating systems including Linux and Windows.
Responsibilities
- Build and nurture positive working relationships with teams and clients.
- Exceed client expectations in service delivery.
- Administer and troubleshoot Splunk.
- Integrate Splunk with various log sources including security devices and web applications.
- Tune and troubleshoot Splunk premium apps like Enterprise Security, Phantom, and UBA.
- Write regular expressions to extract fields from custom log sources.
- Develop custom use cases using Splunk search language.
- Create dashboards and reports using SPL queries and XML.
- Manage client expectations effectively.
Requirements
- Splunk Certified professional with at least Splunk Admin user certification.
- Good experience in Splunk administration and troubleshooting.
- Experience in integration of Splunk with various log sources.
- Comfortable writing regular expressions.
- Expertise in developing custom use cases using Splunk search language.
- Hands-on experience in creating dashboards and reports using SPL queries and XML.
- Good knowledge of information security and IT operations.
- Proficiency in client and server operating systems including Linux and Windows.
- General networking and system troubleshooting skills.
Nice-to-haves
- Overall experience of at least 5+ years as SIEM Splunk Enterprise Security administrator.
- Hands-on experience with Splunk enterprise security (SIEM) and security tools.
- Proven skills in use case development and log source integration.
- Experience working across diverse teams.
Benefits
- Hybrid working model.
- Opportunities for professional growth and development.
- Supportive work environment focused on inclusion and diversity.
