Cyber Detection Specialist

We are seeking a skilled and dedicated Cybersecurity Detection Analyst with a focus on public and private infrastructure. The analyst is responsible for managing and enhancing our Splunk environment to ensure seamless data ingestion, analysis, and visualization. This role demands a deep understanding of Splunk architecture, data onboarding, and user management to support business needs and security operations in both our corporate and Lightspeed environments.  

Main Responsibilities

• Design, deploy, and manage Splunk infrastructure
• Develop and maintain Splunk dashboards, queries, and alerts
• Integrate Splunk with various data sources to ensure comprehensive data ingestion
• Monitor and troubleshoot Splunk performance issues
• Collaborate with cross-functional teams to gather requirements and provide Splunk solutions
• Implement and enforce best practices for Splunk data management and retention
• Provide user training and support for Splunk-related activities

Education & Experience Required

• Bachelor’s degree in Computer Science, Information Technology, or a related field
• Industry recognized professional certification such as CISSP or CEH is a plus
• 3+ years of experience in managing and configuring Splunk
• Strong understand of Splunk Enterprise Security (ES)
• Dashboard development
• Creating and managing SPL queries
• Experience with scripting languages such as Python, Bash, or PowerShell
• Familiarity with IT infrastructure and networking concepts
• Excellent problem-solving and analytical skills
• Strong communication skills to effectively liaise with colleagues to elicit alerting requirements from data being ingested into Splunk

Decision Making and Supervision

• Make decisions and recommendations within established procedures, based on troubleshooting and analysis
• Plan and design Splunk ingestion processes and triage procedures
• Coordination with organizations outside of the cybersecurity team
• Work under minimum supervision.