· Candidate should be aware of on boarding logs from different sources using different input types like file monitoring, installation of universal forwarders.
· Candidates who worked on Splunk in Linux/Unix platform are preferred.
· Candidate should have good exposure on security device logs like what is firewall and what information it contains likewise proxy, IPS, IDS, anti-virus, vulnerability management tools(qualys guard)
· Candidates who have experience on Windows server services like active directory, DHCP, DNS are preferred.
· Candidate should know basic Search processing language (minimum criteria)