UAMS Platform Senior Advisor administers security solutions / tools and is responsible for overall administration and configuration of the platforms;
is a subject matter expert with specialized expertise on the solutions / tools they support. Platform management, software upgrades, rule tuning, and managing operational incidents are the primary objectives for this team (i.
e. health checks, break-fix, ticket support, etc.).
Administer and operate UAM solutions / tools :
Administers access to security solutions / tools including performance of access reviews / audits.
Support internal and external production infrastructure and processes.
Provide configuration of security platforms for optimal balance of performance and security
Patch and update solutions / tools per patch management processes
Integrate predictive / reactive intelligence into detection mechanisms and drive automation where feasible.
Lead operational incident response activities with in-depth and root cause analysis.
Align the architecture, components, standards, and operations to include maintenance procedures, workflows, and work instructions to security best practices.
Align with Customer strategy in planning and forecasting for future information security demands.
Support platform integration with Active Directory and other systems
3+ years professional experience managing and maintaining Splunk systems.
2-3 years professional experience working with networks and network architecture.
2+ year professional experience writing Splunk content.
College degree or equivalent training with experience working in a Security Operations Center, Managed Security, or client network environment.
Understanding of network architecture and implementation is a must; ideal candidate will have worked with network security analysis.
Experience with content Splunk content creation and reporting, Splunk SPL
Excellent time management, reporting, and communication skills.
Superior IT problem-solving skills.
Experience with Linux OS.
Experience working with Internal and client Ticketing and Knowledge Base Systems for Incident and Problem tracking as well as procedures.
i.e. Jira, Confluence, etc.).
General security knowledge (Cisco Security, Security +, or other security certifications).
Knowledge of Linux and Windows Operating Systems.
An understanding of a wide array of server grade applications such as DBMS, Exchange, DNS, SMTP, IIS, Apache, SharePoint, Active Directory, Identity Management, Patch Management, LDAP, SQL, and others.
Experience with various Splunk security products such as ArcSight, QRadar, Nitro, LogRhythm and infrastructure components such as proxies, firewalls, IDS / IPS, DLP etc.
Familiarity with DevOps
Ability to provide on call support when needed
Demonstrated experience and success in a Managed Service client environment
Ability to travel up to 30% of the time
Here are more reasons to join our team!
Look at what we offer and feel free to reach out to us for more details!
Development programs and cyber security trainings / certifications because we grow together
Internal Career Progression Plan for top performers - we encourage you to follow internal opportunities
Regular workshops we are the largest community of cyber security experts and we enjoy sharing our best practices during our Communities of Practice and to our trainees
Great location multiple ways to get to work subway, tram, even your own car also your lunch just around the corner - you can find us at AFI Park 4-5 and Campus 6
Work from home policy your time matters
Relaxation Area because a good gaming break never hurt anybody
Weekly professional massage sessions and even our own massage chairs
Medical and Dental subscription flexible package and you can include your family members
Weekly fresh fruits vitamins are important for your health
Annual Performance Bonus
Internal Employee Rewarding System / Tool we value working as a team and we recognize each other’s efforts