Splunk Security Engineer

Location
McLean, Virginia, United States
Posted
Jun 13, 2018
Closes
Jun 22, 2018
Ref
J3W07N69MBG7KVHBHNM
Hours
Full Time
Job Description Job Number: R0023803

Splunk Security Engineer

Key Role:

Develop security focus content for complex client Splunk deployments, focus on the creation of complex threat detection logic, dynamic operational dashboards, and data source onboarding and configure and deploy enterprise security, operate Splunk using Security Information and Event Management (SIEM) or Security Event Management (SEM), and architect log management or ingestion solutions. Develop automation for security tools management and create customized searches and applications use programming and development expertise, including CSS, HTML, or JavaScript, Python, Shell Scripting, and regular expression. Act as a Splunk Search Language (SPL) expert, develop network or entity based anomaly detection alert logic in SPL using the ML toolkit.


Basic Qualifications:
-3+ years of experience with IT
-1+ years of experience with Splunk, network security, system security, and supporting Security Information and Event Management (SIEM)
-1+ years of experience with rule and advanced logic creation in Splunk
-Experience with using scripting languages to automate tasks and manipulate data
-Experience with working in a large enterprise environment
-Knowledge of enterprise logging, including application, OS, and security technology logging
-Knowledge of regular expressions
-Ability to demonstrate SPL expertise
-Ability to travel up to 80% of the time

Additional Qualifications:
-1+ years of experience with performing hunt activities in an incident response role
-Experience with enterprise-scale operations and maintenance environments
-Experience with programming a plus
-Experience with Python
-Experience with security tools, including Firewall, IDS, Active Directory, Nmap, Burp, Proxy, or Bro
-Knowledge of networking protocols
-BA or BS degree
-Splunk Admin or Architect Certification

We're an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

AFH26, CMCL, TMJ16

Similar jobs