and support of hardened clients, including onboarding, maintenance, and troubleshooting Working with SIEM systems, ideally Splunk...
, mit soliden Kenntnissen in Workflows und operativen Prozessen Tool-Kompetenz: Praxiserfahrung mit Splunk, Kibana, SQL/Oracle... experience with Splunk, Kibana, SQL/Oracle, job scheduling tools, and container platforms like Kubernetes/OpenShift Incident...
Defender for Endpoint (MDE), Carbon Black App Control, ACAS, Splunk, and Splunk SOAR. â— Lead or support enterprise..., analyze, and respond to alerts and telemetry from Trellix, MDE, Carbon Black App Control, ACAS, Splunk SIEM, and Splunk SOAR...
, Tenable, Qualys IP Address Management (IPAM): Infoblox SIEM/SOAR platforms: Splunk, Cortex XSOAR, QRadar SNMP and network...
such as Rapid7, Qualys, Splunk, BitSight, Tenable or similar Ability to translate complex findings into decisive action Solid...
Teams (CSIRT). Expertise with security information and event management (SIEM) systems (eg. ELK, Google BigQuery, Splunk..., etc.). Splunk proficiency is preferred. Expertise with endpoint detection and investigation. Hands-on experience with leading EDR...
aggregation tools (e.g., Splunk, Elastic, Sentinel) for complex correlation analysis Exceptional logical thinking and analytical...
, and modern event streaming patterns Exposure to monitoring tools (Prometheus, Grafana, Splunk) Experience with data lakes, data...
forensics on Windows and other operating systems as needed Conduct log correlation analysis using Splunk and supplemental tools... Experience with Log Aggregation Tools (e.g., Splunk, Elastic, Sentinel) Experience with IDS/IPS, host-based, and operating...
, Elastic stack, Splunk, Sentinel), EDR solutions (e.g., CrowdStrike, Defender, NinjaOne, SentinelOne), and vulnerability...