Freelance SIEM Specialist Splunk SPL Cisco AMP

Job Description

Company Description ThreatXIntel is a startup cyber security company that offers customized, affordable solutions to protect businesses and organizations from cyber threats. With services in cloud security, web and mobile security testing, cloud security assessment, and DevSecOps, we provide high-quality cyber security services to clients of all sizes. Our proactive approach to security involves continuous monitoring and testing to identify vulnerabilities before they can be exploited. Role Description  We are looking for a skilled Freelance SIEM Specialist with deep experience in Splunk, Search Processing Language SPL, and Cisco AMP for Endpoints EDR to support our cybersecurity monitoring and threat detection efforts. Key Responsibilities Develop, customize, and optimize SPL queries and dashboards for advanced threat detection and reporting Maintain and enhance our Splunk SIEM environment to ensure real-time visibility and compliance Integrate and fine-tune data ingestion from Cisco AMP and other EDR solutions Perform security event correlation and incident analysis using Splunk and Cisco AMP logs Support incident response teams with detailed investigations and recommendations Provide documentation and knowledge transfer to internal teams Required Skills Strong hands-on experience with Splunk Enterprise and SPL Search Processing Language Proven knowledge of Cisco AMP for Endpoints and its integration with SIEM platforms Understanding of SIEM concepts, cybersecurity frameworks such as MITRE ATTACK, and threat detection strategies Ability to work independently and communicate technical concepts clearly Nice to Have Splunk certifications such as Splunk Core Certified Power User or Admin Experience with additional EDR or SOAR tools Background in incident response or SOC operations Show more Show less