Title: Cybersecurity Engineer / Splunk Admin
Location: Richmond, VA
Remote
Duration: 6 Months+
Interview:
Job Description
Perform PenTest on all applications and Admin for Splunk.
Pentest: Perform Pentest on Application in a timely manner.
Testing: Performing remote or onsite tests on all systems, networks, and applications to identify security weaknesses
Analyzing: Analyze the vulnerabilities and mitigation methods
Reporting: Provide reports which include findings, risks, and conclusions
Advising: Recommend security improvements and methods to mitigate security risks
Collaborating: Working with IT to determine their testing requirements
Creating: Creating and implementing new penetration testing methods, scripts, and tool Splunk
- Management of Data Collection Infrastructure
- Deployment Server management to distribute Splunk Universal Forwarder (UF) instances
- Syslog servers that collect data from infrastructure systems (firewalls, IDS, UPS or other syslog generating device)
- Splunk heavy forwarders which can collect information from various databases or third-party systems
- Splunk HTTP event collector to obtain data from custom applications (Java, .net, JavaScript, or other web apps), and
- When used, Splunk Stream to capture wire data and output raw or statistical information about the data.
- Re-architecture of Syslog aggregation for Splunk or extensive modification to Syslog configuration (configuring new storage, building for high availability, etc.)
- Expanding log source collection of an existing source type
- Custom script development (e.g., for data collection or integration to non-standard products)
To unsubscribe from future emails or to update your email preferences click here