Security Engineer with Splunk

Security Engineer with Splunk

Vacancy expired!

job summary:

Splunk Security Engineer


Seeking a Sr. Splunk Security Engineer specializing in Splunk Enterprise Security and the Splunk SOAR platform. The Splunk Security Engineer is responsible for designing and implementing Risk-Based Alerting to empower Security Analysts for early detection of any threats they might encounter in the wild.


The Splunk Security Engineer will work closely with other Security team members to enforce security policies and standards and respond to security incidents. To ensure success, the Splunk security engineer seeks to bring together business owners, incident responders, and other security team members to creatively solve complex business/technical challenges with engineering solutions. Therefore, the Splunk security engineer must be proficient in using Splunk Enterprise Security, Splunk SOAR, and other automation tools.

Here's What You'll Do:

• Enforce security controls based on Company Policies, Standards, and Compliances
• Operationalize Cybersecurity Frameworks by embedding MITRE ATT&CK, CIS 20, and NIST controls
• Streamline investigation and remediation using Splunk SOAR's automation capabilities by reducing or eliminating time for security incident triage activities and, at the same time, providing a better context for the investigative process
• Provide engineering support for Splunk components such as Splunk Cloud, Splunk ES, Splunk SOAR, Splunk Deployment Server, Splunk Heavy Forwarders, and other Splunk-related technologies
• Build and maintain internal documentation for Splunk environments and use HowTos for SOC Analysts

Here's What You'll Bring to the Table:

• Must have a Bachelor's degree in Computer Science or a related field.
• Six years of Splunk Enterprise Security and SOAR experience in large enterprise environments
• strong understanding of Security Frameworks and their implementation within Splunk ES and SOAR
• On-boarding new log sources into Splunk, analyzing anomalies and trends, and building dashboards highlighting missing logs
• Create complex searches, data models, custom visualization dashboards, reports, and alerts.
• Develop Splunk Use Cases, Dashboards, Alerts, and Reports based on different sources of logs.
• Manage Splunk Cloud Victoria tenant, Enterprise Security, Splunk SOAR, Heavy Forwarder, and Deployment Center.
• Experience creating and managing Splunk knowledge objects (field extractions, macros, event types, CIM, data models, etc.)
• Experience integrating multiple data streams and feeds from networks, infrastructure services, and mission-critical business applications into a near, real-time dashboard for troubleshooting.
• Must maintain up-to-date knowledge of technology standards, industry trends, emerging technologies, and best practices.
• Experience in working under pressure in a fast-paced environment.
• Must have strong attention to detail, analytical mind, and outstanding problem-solving skills.
• Must have an excellent awareness of cybersecurity trends, hacking techniques, and MITRE ATT&CK and NIST Frameworks.
• Must possess excellent communication skills, both written and oral.
• Must hold one of the certifications: Splunk Architect Certification or Splunk Enterprise Security Certification.

location: NORWOOD, Massachusetts

job type: Contract

salary: $80 - 85 per hour

work hours: 8am to 4pm

education: Bachelors



responsibilities:

The Splunk Security Engineer will work closely with other Security team members to enforce security policies and standards and respond to security incidents. To ensure success, the Splunk security engineer seeks to bring together business owners, incident responders, and other security team members to creatively solve complex business/technical challenges with engineering solutions. Therefore, the Splunk security engineer must be proficient in using Splunk Enterprise Security, Splunk SOAR, and other automation tools.






qualifications:

• Experience level: Experienced
• Minimum 5 years of experience
• Education: Bachelors

skills:

SECURITY

Network Security

Splunk

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

At Randstad, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact HRsupport@randstadusa.com.

Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad offers a comprehensive benefits package, including health, an incentive and recognition program, and 401K contribution (all benefits are based on eligibility).



For certain assignments, Covid-19 vaccination and/or testing may be required by Randstad's client or applicable federal mandate, subject to approved medical or religious accommodations. Carefully review the job posting for details on vaccine/testing requirements or ask your Randstad representative for more information.