This role involves hands-on engineering of security analytics pipelines using Splunk and Cribl to optimize data ingestion and detection capabilities
Job Summary
This role involves hands-on engineering of security analytics pipelines using Splunk and Cribl to optimize data ingestion and detection capabilities.
The successful candidate will collaborate with SOC, Threat Hunting, and Incident Response teams to build robust dashboards and reduce false positives.
PwC offers a vibrant community focused on innovation, providing inclusive benefits, mentorship, and opportunities for professional growth in a purpose-led environment.
Matching Summary
This role involves hands-on engineering of security analytics pipelines using Splunk and Cribl to optimize data ingestion and detection capabilities.
Salary
Not specified; Not specified; Not specified
Skills & Requirements
Must-have
Splunk Enterprise/Cloud/ES experience
Cribl Stream and Edge pipeline management
Advanced SPL scripting skills
Log source onboarding and normalization
CIM mappings and data model implementation
Nice-to-have
Risk-based alerting and UEBA knowledge
Cloud logging for AWS Azure GCP
SOAR playbooks and automation
OpenTelemetry and observability crossover
Purple team exercise participation
Key Requirements
2-3 years of hands-on SIEM experience
Bachelor of Engineering or MBA degree
Splunk Core Certified Power User certification
Linux fundamentals and Git-based content management
Strong communication and cross-time-zone collaboration