Pittsburgh, PA
ESSENTIAL RESPONSIBILITIES
· Create, review, and maintain monitoring rules for Splunk Enterprise Security as part of the content development lifecycle.
· Conduct threat hunting activities for the organization.
· Mentor junior analysts on Level 1 security monitoring and incident review using a Security Information and Event Management platform (SIEM).
· Review NetFlow, Endpoint, Database, and various other security-relevant logs for anomalies.
· Complete tasks to enable the on time, within budget, and in-scope delivery of information security projects.
· Present new and existing information security information to workforce and management.
· Assist in incident respo...
