Splunk Use Case Developer - SRKay Consulting Group
- Hong Kong, Hong Kong, Hong Kong S.A.R.
- Apply by: Jan 01, 2026
- 1 Vacancy
- Local Candidates (Hong Kong S.A.R.)
- Experience: Year
- Contract
- Work from Office
Job Description
Key Responsibilities
Use Case Development
- Perform the actual coding (SPL and SPL2) for Splunk Use Cases
- Build visualizations and dashboards to support use cases and ad hoc investigations.
- Review and enhance existing use cases
- Maintain Use Case Library
- Liaise with Data Admin to ensure that the expected data is being obtained based on the defined use case logic.
- Get feedback from the analysts to ensure that the expected results of the use case logic are being achieved. Modify the existing use case logic and search queries upon approval of the Senior SOC Manager.
Person Specification
- Degree holder in Computer Science or related disciplines, or appropriate extensive experience.
- At least 2 years experiences in utilising Splunk within a SOC environment.
- Obtained at least Splunk Fundamental 2/3 or various Splunk E-learnings
- Certified Splunk Enterprise Security Administrator or Splunk Enterprise Admin is highly preferred.
- At least 5 years experiences in Information Security
- Have a good knowledge of the business, analytics, data visualization and modelling.
- Strong problem-solving skills and fast learner.
- Liaison skill & teamwork, passion & commitment mentality
- Good interpersonal and communication skills.
- Fluent in spoken and written English
Technical Requirements
- Broad knowledge and understanding of the security field and its core components
- Experience in security analyst Operations, specifically triage, investigation, and containment.
- Broad knowledge and understanding of Network data and able to troubleshoot Splunk queries/searches when results are not returning as expected.
- Broad knowledge and understanding of Computer operating systems
- A basic understanding of directory and identity management services.
- A basic understanding of cloud computing and infrastructure.
- A basic understanding of server and service operations.
- A general understanding of Attacker tools such as Remote exploit kits, Remote Access Tools etc.
- A high level of understanding of Attack taxonomy such as MITRE ATT&CK, Lockhead Martin Kill chain, Diamond model etc.
- A development/programming background is a big plus.
Skills Required
Share Job
Related Jobs
- 1 Vacancy
- Hong Kong
- Dec 25, 2020
- HKD 10000 - HKD 14000
- 1 Vacancy
- Hong Kong
- Dec 25, 2020
- HKD 43000 - HKD 44000
- 1 Vacancy
- Hong Kong
- Dec 25, 2020
- HKD 10000 - HKD 12000
- 1 Vacancy
- Hong Kong
- Dec 25, 2020
- HKD 12000 - HKD 15000
- 1 Vacancy
- Hong Kong
- Dec 25, 2020
- HKD 10000 - HKD 12000