PaloAlto Splunk Developer

Requirements

• A Bachelors degree in engineering computer science information security or information systems.
  
• Minimum 13 years of experience in Cybersecurity engineering and operations emphasizing SOC operations with proficiency in SIEM management and administration.
  
• Experience in multicloud environments (e.g. AWS GCP Azure) specifically in log storage analytics and data storage technologies.
  
• Familiarity with the Palo Alto Networks Cortex platform including Cortex Data Lake for log ingestion aggregation and interoperability with thirdparty platforms.
  
• Proficiency in common scripting languages (Python HTML JavaScript) for automation and playbook creation.
  
• Competence in data queries log aggregation and functionality of the Palo Alto Cortex Data Lake with an understanding of integration into SIEM solutions like Splunk.
  
• Strong understanding of nextgeneration firewall features including DNS SSL VPN multifactor authentication and IPS technologies.
  
• Excellent communication planning and organizing skills to foster teamwork and collaboration ensuring effective communication between clients employees and management.
  
• Clear and concise written and verbal communication skills.
  
• Knowledge of common threat vectors vulnerabilities and staying updated on the latest cybersecurity trends and relevant threat intelligence.
  
• Development of process documents Standard Operating Procedures (SOPs) and runbooks for daytoday operations management.
  
• Experience in coordinating and collaborating with multiple vendors for ongoing issues and upcoming technology enhancements.
  
• Strong knowledge of ITIL and the ability to define execute and enforce key ITIL processes such as incident problem and change management.
  
• Ability to plan schedule track and report on project timelines/milestones using collaboration tools like ServiceNow/Jira.
  
• Excellent logical and practical understanding of Secure Software Development Life Cycle (SSDLC).
  
• Capability to create plan and execute advanced Network Security training and drive proof of concepts involving emerging technologies.
  

• Experience within an enterprise SOC environment with a fundamental understanding of incident response blue/red teaming alert analytics and related functions.
  
• Splunk Core Power User Palo Alto Networks PCNSA or other applicable certification.
  
• Experience with Public Cloud Networking (Azure AWS GCP).
  
• Experience with Zero Trust frameworks implementation and maturity.
  
• Experience with data governance aligned to common frameworks including NIST CISA FISMA etc.
  
• Understanding of PowerBI Tableau or other analytics and reporting tools.
  
• Contribution as a Subject Matter Expert (SME) in network security technologies.
  
• Preparation and enforcement of standards and procedures for the teams work.
  
• Thorough understanding of data networking and security technologies along with network implementations by current applications.
  
• Configuration and deployment of complex firewall solutions in large data centers campuses or enterprise environments.
  
• Broad exposure to other security domains beyond Network Security.
  
  

Benefits