Job Description
Position Description:
The Global Security Operations Center (GSOC) is seeking a SIEM & Log Management Administrator to support its Log Analytics Team. This role will serve as a key enabler for security observability, responsible for administering, maintaining and optimizing our log management and SIEM solutions, while ensuring high data quality, completeness, and integrity across the security telemetry pipeline.
This is a highly technical, hands‑on role requiring deep expertise in log ingestion, normalization, transformation, and the health of distributed data systems that support threat detection, response, and security analytics at scale.
Your future duties and responsibilities:
- SIEM Administration
- Administer and maintain Splunk environments including forwarders, indexes, ingestion pipelines, and knowledge objects.
- Tune and optimize ES correlation searches, risk‑based alerting (RBA), and data models to support efficie...