Job Title Splunk Developer/Consultant

Location - Dallas, TX (Hybrid)

Splunk certification Mandate

Mandatory Skill- Aplus in Security Dashboard

Splunk Developer

Threat Hunting Dashboard

XML

Mandatory if Applicable

Job Description Overview:**

- Cyber Fusion Centre s Insider Risk Team is seeking a Splunk Developer/Consultant.

- Purpose: Fulfil operational needs associated with investigative and research objectives of the Insider Risk Team.

1. **Candidate Requirements:**

- Minimum five years of experience with Splunk.

- Possession of Splunk certifications.

- Knowledge of XML.

1. **Key Development Objectives:**

- Development of a customized repository for frequent queries.

- Repository features:

- Drop-down selector for specific use cases and queries.

- Designed for ease of use.

- Additional development tasks:

- Development of new use cases or queries.

- Customization of existing or new queries/searches.

- Creation of a Threat Hunting Dashboard.

- Normalization of proxy logs.

1. **Documentation Requirement:**

- Developer must create documentation for long-term maintenance needs:

- Updates.

- Modifications.

- Break fix.

1. **Role Expectations:**

- Flexibility to accommodate changes.

- Support for new objectives as identified.

- Attendance at weekly meetings.

- Development of a project roadmap.

- Provision of progress reports and time estimates for task completion.