Threat Detection Engineer - Splunk Developer

Client: Financial institution

Work arrangement: hybrid, full-time (EU-based), 8 days/month on-site in Brussels or London or Amsterdam or Paris.

Role:

• Interact with the different customers to capture and define requirements for the development and testing of the threat detection capabilities
• Cooperate with log source onboarding team to assure correct log source onboarding and log mapping to data models according to Splunk standard processes
• The development and tuning and continuous improvement of correlation rules
• Develop and maintain dashboards, reports, and alerts
• Create Splunk Knowledge Objects to address customers needs in context of using Spl...