LOG MANAGEMENT SPECIALIST - 3 Month Contract (M/W)
Key information
- Publication date:02 October 2024
- Workload:100%
- Contract type:Permanent position
- Place of work:Genève
You are a Log Management Specialist ? You can lead some projects with efficience and efficacity ? Apply quickly !
Meanquest is an IT company on a human scale with several areas of expertise: infrastructure, support, cloud solutions and recruitment. First, our job is to give meaning to our clients' IT and our teams' day-to-day work. We have 3 sites (Ecublens, Meyrin and Givisiez) and we are always recruiting people who want to take on responsibility and work in a young, dynamic environment.
For one of our client based in Geneva, we are looking for a
LOG MANAGEMENT SPECIALIST / Full Remote (M/W)
Missions:
-
Design and plan each application logs onboarding in order to monitor suspicious activities.
-
Identify retention period with the security team (CSTP).
-
Identify the index and who need to access the index.
-
Identify the collection method (agent, api call, etc ).
-
Define Splunk metadata (source and source type).
-
Ensure unnecessary logs are not ingested (Cribl will be used for this purpose).
-
Document and maintain according to ICRC standards.
-
-
In collaboration with practice leads and product owners identify all the relevant logs that will need to be onboarded to Splunk.
-
Develop detection rules in Splunk. Based on CSTP detection and monitoring rules write Splunk queries that will be used for alerting.
-
Coordinate with internal teams to identify admin owners for 21 critical applications.
-
Engage with Cyber Security team to implement log management processes which prevent potential threats or unauthorized actions.
-
Contribute to the project team for validation of the roadmap for the cyber controls.
Profile:
-
Proficient in leveraging Splunk, Cribl, Elastic, and other related tools for log management, with a focus on ensuring scalable deployment.
-
A university degree in a technical field, complemented by a minimum of 5 years of experience in administering primarily on-premises based multi-user environments.
-
At least 5 years of hands-on experience in running log management and analytics platforms such as Splunk and Elastic Stack in a production environment.
-
This should include expertise in planning, designing, building, and implementing complex systems tailored for log management and analytics.
-
Monitoring, Logging, and Alerting Systems: Extensive experience with monitoring, logging, and alerting systems, such as Prometheus, Grafana, Open Telemetry.
-
Linux administration: Strong experience in Linux Administration is crucial.
This position is open to both men and women.
Don't hesitate! Join us and apply online now! Only applications that meet all the required criteria will be considered.
Secteur: Services sociaux et pour la communauté/Associations à but non lucratif
Poste: Technologie/TI
Type d'emploi: CDD
Niveau de carrière: Employé