Splunk Engineer - Consultant Certified/Heavy ES Experience Required
Description For Splunk Engineer - Consultant Certified/Heavy ES Experience Required
True Zero Technologies, a distinguished veteran-owned small business, is seeking a Senior Splunk Engineer with extensive ES experience. The role combines technical expertise in Splunk engineering with security information and event management (SIEM). As part of an innovative team, you'll be responsible for maintaining client Splunk instances, focusing on data on-boarding, content development, reporting, and visualizations.
The position offers a unique opportunity to work with a company recognized as a "Best Places to Work" and one of Inc. Magazine's Top 5000 Fastest Growing Companies. You'll be part of a collaborative environment that emphasizes knowledge sharing and professional growth, with access to a comprehensive knowledge base and technical support from the entire PS team.
Key responsibilities include developing custom dashboards, implementing security use cases, configuring incident response workflows, and creating machine learning models for anomaly detection. The ideal candidate will have strong experience with Risk-Based Alerting (RBA) and be capable of training CISO teams on Splunk engineering practices.
The company offers an exceptional benefits package, including 100% covered medical premiums, 401k matching, parental leave, and investment in professional development. This remote position provides the flexibility of working from anywhere while being part of a community of like-minded, driven professionals committed to delivering top-tier services to customers.
If you're passionate about security analytics, have a Splunk Consultant Certification, and want to join a fast-growing company that values its employees' growth and well-being, this role presents an excellent opportunity to advance your career while making a significant impact.
Responsibilities For Splunk Engineer - Consultant Certified/Heavy ES Experience Required
- Develop and Implement Apps & Knowledge Objects like Dashboard, Reports, Data Models
- Work with Splunk Architect/Admin to promote private KO to Global KO
- Train CISO Splunk Engineering team on Data Lifecycle
- Support and train CISO teams on Searching and Content Development
- Develop risk rules and risk incident rules
- Configure incident response and remediation workflows
- Develop custom dashboards specific to RBA
- Develop custom machine learning models for anomaly-detection
Requirements For Splunk Engineer - Consultant Certified/Heavy ES Experience Required
- US Background Check Required
- Splunk Consultant Certification
- Heavy Splunk ES Experience
- Experience with RBA
- Understanding of network protocols, operating systems, applications, and device event telemetry
- Ability to develop and implement actionable alerts and workflow for Splunk as a SIEM tool
- Experience in developing custom machine learning models for anomaly detection
- Knowledge of implementing & maintaining event logging from various systems
Benefits For Splunk Engineer - Consultant Certified/Heavy ES Experience Required
- Competitive salary, paid twice per month
- Best in class medical coverage
- 100% of medical premiums covered
- Company wide new business incentive programs
- Contribution Incentives
- 3 weeks of PTO + 11 Paid Holidays Annually
- 401k Program with 100% company match on first 4%
- Monthly reimbursement of Cell Phone and Home Internet costs
- Paternity/Maternity Leave
- Investment in training and certifications
Jobs Related To True Zero Technologies Splunk Engineer - Consultant Certified/Heavy ES Experience Required
