Splunk Developer (Threat Detection Consultant)

Splunk Developer (Threat Detection Consultant) - Brussels/London/Paris/Amsterdam - Banking Client Duration: 1 year Rate: 500 - 800 per day Hybrid: 2 days onsite per week (London, Paris, Brussels or Amsterdam) Role: Interact with the different customers to capture and define requirements for the development and testing of the threat detection capabilities Cooperate with log source onboarding team to assure correct log source onboarding and log mapping to data models according to Splunk standard processes The development and tuning and continuous improvement of correlation rules Develop and maintain dashboards, reports, and alerts Create Splunk Knowledge Objects to address customers needs in context of using Splunk as security tool Prepare correlation search tests, conduct tests, and document evidence from test that shows correlation search addresses scenario described in use case Responsible for the creation of procedures, high-level/low-level documentation, implementation of processes and development of staff in relation to SIEM detection logic Coach a team (from a technical perspective); review work outputs and provide quality assurance Analyses and identifies areas of improvement with existing processes, procedures, and documentation Demonstrates how to u...