| Cyber Security(REMOTE)::USC at Remote, Remote, USA |
| Email: [email protected] |
|
http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=1426779&uid= Job Description - Title :- Cyber Security(REMOTE) Location :- REMOTE Client :- Deloitte Visa :- They need USC candidate only Duration :- 12+ months MOI :- Skype Need :- Visa/DL Copies / LinkedIn Job Description Role: Insider Risk Specialist - Splunk ES/UBA LCAT: Cyber Defense Analyst Senior Level Description Assist in maturing an Insider Risk Programs operational support, including the development of playbooks and workflows for monitoring against potential insider risks, developing detection use cases, and conducting incident analysis. Implement federal government and industry standards and best practices regarding insider risk programs, including development and maintenance of OCISO programmatic gap analyses and implementation roadmaps. Assist in the creation of Gap Analysis on current tool usage for the Insider Risk program and make recommendations based on industry best practices and client organization. Develop and maintain a convergence model for insider risk mitigation that reduces risk to clients personnel and assets. Develop and improve insider risk modeling that leverages Splunk User Behavior and Entity Analytics (UEBA), Data Loss Prevention (DLP), Splunk Enterprise Security (ES), Microsoft Purview, Machine Learning, and automated solutions in place. Develop and expand situational playbooks that leverage clients automated capabilities. Leverage excellent interpersonal skills to coordinate with clients business and technology leaders to develop and maintain programmatic solutions to insider risk. Lead and assist in the investigation of all incidents involving insider risk. Technical Splunk experience is required. Proficiency with tools such as Splunk (UBA, ES and SOAR). Provide subject matter expertise across insider risk tool suite. Should have: 2+ years of investigations work experience involving insider risk investigations, security incident response, technical investigations, intellectual property investigations, and/or financial fraud investigations 3-5+ years of experience in Splunk UEBA and/or Splunk Enterprise Security 7+ years of experience in Cyber Security domain Experience thriving in a heavily regulated environment Experience in Splunk content development and Splunk Search Processing Language (SPL) Knowledge of Machine Learning (ML) and how it applies to Insider Risk programs. NOTE :- Make sure they have Splunk UBA / UEBA in resume .They don't need a certification but I feel like the ones who have a splunk cert are getting interviewed faster but either way make sure they have the skills in resume that are on the job description so go (Splunk UBA/UEBA, SOAR, SPL), ML (machine learning) and obviously security ( as far as the machine learning part its not an machine learnign engineer. its still a security person with splunk but they do ML in their roles partially Om Verma Tech. Recruitment specialist Mob : 4695189899/ whatsapp-8506910297 Email: [email protected] TEK Inspirations LLC : 13573 Tabasco Cat Trail, Frisco, TX 75035 Keywords: machine learning information technology golang Texas Cyber Security(REMOTE)::USC [email protected] http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=1426779&uid= |
| [email protected] View All |
| 11:17 PM 24-May-24 |