Splunk Area Technical Account Manager
HKD 300K-300K (estimate) Mid-level Full Time
Tasks
- Assess MITRE ATT&CK coverage gaps
- Audit indexes and data models
- Configure SOAR automation responses
- Deliver Splunk security onboarding workshops
- Deliver case based architecture and optimization guidance
- Develop and optimize correlation search rules
- Drive CIM compliance
- Integrate and normalize data sources
- Manage risk based alerting
- Perform health reviews and remediation
- Plan and develop security detections and analytics
- Provide technical consulting for Enterprise Security
- Support forwarding architecture and technical add ons
- Write custom SPL
Perks/Benefits
- N/A
Skills/Tech-stack
AWS | Adaptive response | Assets and Identities | Automation and response | Azure | Behavior analytics | CIM Common Information Model | CIS Benchmarks | Cloud Architecture | Cloud platform | Common Information Model | Correlation searches | Cybersecurity Framework | Data Ingestion | Data Normalization | Enterprise Security | Forensics | Forwarder Architecture | Google Cloud | Google Cloud Platform | HIPAA | Information Model | Insider Threats | MITRE ATT&CK | NIST Cybersecurity | NIST Cybersecurity Framework | Notable events | PCI DSS | Risk Analytics | Risk-Based Alerting | Risk-based | SOAR | SPL | Search Processing | Search Processing Language | Security Orchestration | Security Orchestration Automation | Security Orchestration Automation and Response | Security operations | Splunk CIM | Splunk Enterprise | Splunk Enterprise Security | Splunk User Behavior Analytics | Threat Intelligence | Threat hunting | User Behavior Analytics
Education
N/A
Related jobs
-
Business Continuity | Business Continuity Planning | Continuity planning | Crisis management | Emergency responseMid-level Full TimeHong Kong (China), Hong Kong Island, …23h ago
-
Access Control | Business Resilience | Data Analysis | Duress Alarms | Emergency Management24 7 emergency availability rosterMid-level Full TimeShatin, New Territories, Hong Kong13d ago
-
AWS | Application Firewall | Business Continuity | Business Continuity Planning | CISAMid-level Full TimeShatin, N.T., Kowloon1mo ago
-
Access Control | CCTV | Incident Management | Information Management | Mass notificationMid-level Full TimeHKG - HKDL - Hong Kong …1mo ago