Salary.sg Forums

Salary.sg Forums (https://forums.salary.sg/)
-   Income and Jobs (https://forums.salary.sg/income-jobs/)
-   -   Cybersecurity/Info security career (https://forums.salary.sg/income-jobs/12897-cybersecurity-info-security-career.html)

Unregistered 26-07-2021 10:39 PM

Quote:

Originally Posted by Unregistered (Post 178459)
what does this have to do with cyber security?

Many companies use splunk as a LMS/SIEM

Unregistered 27-07-2021 10:50 AM

Quote:

Originally Posted by Unregistered (Post 178459)
what does this have to do with cyber security?

Splunk is cyber security analysis tool.

Unregistered 28-07-2021 10:42 AM

Quote:

Originally Posted by Unregistered (Post 178430)
Any splunk engineers/admin here? I have a job offer which will be mostly working on Splunk. Wondering if it's a good opportunity or is it too niche?

Generally it is okay. As alot of Org use Splunk as a SIEM. Understand the concept and fundamental. As SIEM is almost the same - as in the Correlate or use case mechanism. some org might move away from Splunk in the future, yes and no. As the market of SIEM is pretty competitive. But i would say.. most or.. all SOC require a SIEM. it is just which one? As different SIEM is be selected depending on the threat eco landscape or the security products the company select.

Good luck

Unregistered 28-07-2021 02:25 PM

Quote:

Originally Posted by Unregistered (Post 178430)
Any splunk engineers/admin here? I have a job offer which will be mostly working on Splunk. Wondering if it's a good opportunity or is it too niche?

Depends whether inhouse or vendor, SIEM is a good way to get into security engineering as you will understand more on devices when you do log source onboarding and logs digestion.

Unregistered 28-07-2021 09:38 PM

Quote:

Originally Posted by Unregistered (Post 178653)
Depends whether inhouse or vendor, SIEM is a good way to get into security engineering as you will understand more on devices when you do log source onboarding and logs digestion.

Thanks for your reply. In your opinion, is inhouse or vendor better?

Unregistered 28-07-2021 09:41 PM

Quote:

Originally Posted by Unregistered (Post 178637)
Generally it is okay. As alot of Org use Splunk as a SIEM. Understand the concept and fundamental. As SIEM is almost the same - as in the Correlate or use case mechanism. some org might move away from Splunk in the future, yes and no. As the market of SIEM is pretty competitive. But i would say.. most or.. all SOC require a SIEM. it is just which one? As different SIEM is be selected depending on the threat eco landscape or the security products the company select.

Good luck

Thanks for your reply. I agree on your point about understanding the concept and fundamental. Even if companies move away from Splunk in the future, the knowledge on logs correlation/use case will still be valuable.

Unregistered 28-07-2021 09:42 PM

Quote:

Originally Posted by Unregistered (Post 178677)
Thanks for your reply. In your opinion, is inhouse or vendor better?

Depends what your goal? Inhouse will be admin, vendor wise will be engineer mostly. I know E***** hiring vigorously for their splunk team, please dont tell me you're going there...

Unregistered 29-07-2021 09:51 AM

If you are looking at SIEM, now they normally will integrate with SOAR. (Partnership / acquired by the bigger companies (SIEM))
Like Splunk is working with Phantom
Palo Altos works well with Demisto (Cortex)
Qradar with Resilient.
Though most SOAR would be able to work with most SIEM but somehow they do have a preferred one to a certain extend.
If you could - pick up SOAR piece as well. so that you could be more complete.

Unregistered 29-07-2021 03:47 PM

Quote:

Originally Posted by Unregistered (Post 178680)
Depends what your goal? Inhouse will be admin, vendor wise will be engineer mostly. I know E***** hiring vigorously for their splunk team, please dont tell me you're going there...

Anything wrong to join "E N S I G N" ?

Unregistered 29-07-2021 06:06 PM

Quote:

Originally Posted by Unregistered (Post 178680)
Depends what your goal? Inhouse will be admin, vendor wise will be engineer mostly. I know E***** hiring vigorously for their splunk team, please dont tell me you're going there...

hahaha what's wrong with E*****? Heard from people in the industry it's one of the better one among the SI leh...


All times are GMT +8. The time now is 06:28 PM.

Powered by vBulletin® Version 3.8.5
Copyright ©2000 - 2022, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.3.2