Splunk Engineer
Description For Splunk Engineer
phia, a Northern Virginia-based cybersecurity company, is seeking a talented Splunk Engineer to join their team in a remote capacity. This role combines technical expertise in Splunk with cybersecurity operations, offering an opportunity to protect large enterprises from cyber threats.
The position requires a seasoned professional with 5+ years of experience in information security operations, who will be responsible for configuring and managing Splunk Core and Enterprise Security services. You'll be at the forefront of developing and implementing security solutions, creating custom dashboards, and developing machine learning models for anomaly detection.
As a Splunk Engineer, you'll work closely with CISO teams and various stakeholders to implement robust security monitoring solutions. The role offers a perfect blend of technical challenges and collaborative opportunities, allowing you to make a significant impact on enterprise security posture.
The company offers an attractive benefits package including comprehensive medical insurance, 401k with company match, and professional development opportunities. This is an excellent opportunity for someone passionate about cybersecurity who wants to work with cutting-edge security tools and technologies.
The position requires U.S. citizenship and the ability to obtain a Public Trust clearance, reflecting the important nature of the work. You'll be joining a company that values work-life balance and provides opportunities for professional growth while supporting critical national security initiatives.
The ideal candidate will be a proactive problem solver who thrives in a fast-paced environment, possesses strong communication skills, and has a genuine desire to learn and advance their career. If you're passionate about cybersecurity and want to work with a company that supports various agencies within the Department of Defense and Federal government, this role offers an excellent opportunity to make a meaningful impact.
Responsibilities For Splunk Engineer
- Tune and configure Splunk Core and Splunk Enterprise Security (ES) services
- Develop and implement actionable alerts and workflows for Splunk as a SIEM tool
- Create and manage Apps & Knowledge Objects including dashboards, reports, and data models
- Implement automation to improve CISO workflow efficiency using Splunk
- Develop risk rules and risk incident rules for correlating and alerting significant cyber events
- Create custom dashboards for Risk-Based Alerting
- Configure incident response and remediation workflows
- Develop custom machine learning models for anomaly-detection
- Conduct workshops and training sessions for CISO teams
- Support off-hours and weekend efforts for incident investigations and systems maintenance
Requirements For Splunk Engineer
- 5+ years of experience in information security operations
- Experience supporting operational Splunk deployments
- Experience with SAAS- or cloud-hosted Splunk implementation
- Proven ability to provide high-quality written technical reports
- Excellent organizational skills
- U.S. Citizenship required
- Ability to obtain Public Trust clearance
- Bachelor's degree in Computer Science, Information Technology or Information Security (preferred)
Benefits For Splunk Engineer
- Comprehensive medical insurance including dental and vision
- Short Term & Long-Term Disability
- 401k Retirement Savings Plan with Company Match
- Tuition and Professional Development Assistance
- Flex Spending Accounts (FSA)
Jobs Related To phia Splunk Engineer
