image
  • Snapboard
  • Activity
  • Reports
  • Campaign
Profile Resumebox Contact List My Jobs Send Mail
image
Welcome ,

Invite others to join Snaprecruit

Send

Share about us on social media!

Logo
Logo
Sign Up
Log in
loadingbar
Loading, Please wait..!!

Splunk Cyber Security Solutions Engineer Architect

  • ... Posted on: Nov 22, 2024
  • ... Ohm Systems
  • ... Morrisville, North Carolina
  • ... Salary: Not Available
  • ... Full-time
Save this job

Point Apply Here

Splunk Cyber Security Solutions Engineer Architect   

Job Title :

Splunk Cyber Security Solutions Engineer Architect

Job Type :

Full-time

Job Location :

Morrisville North Carolina United States

Remote :

No

Jobcon Logo Job Description :

Summary:
This position focuses on implementing and optimizing cybersecurity measures through advanced tools like Splunk, Tanium, and Microsoft Defender. The role requires expertise in dynamic detection, risk-based alerting, and developing actionable workflows, along with conducting workshops and supporting incident investigations.

Position Info:

  • Title: Splunk Cyber Security Solutions Engineer /Architect IV
  • Client: Peraton
  • Duration: 8 Months
  • Location: 6001 Hospitality Court, Morrisville, NC 27560
  • Work Mode: Remote for (Morrisville, NC; Falls Church, VA; Eagan, MN) Candidates only

Responsibilities:

  • Implement dynamic detections and integrate alerting platforms such as Tanium, SEP, and Microsoft Defender with risk-based alerting frameworks.
  • Configure and fine-tune Splunk Core and Splunk Enterprise Security (ES) services, developing advanced use cases for cybersecurity.
  • Participate in architecting, designing, and building solutions for the Continuous Monitoring Program.
  • Provide training, workshops, and lifecycle support for CISO teams on Splunk usage and content development.
  • Support incident investigations and systems maintenance during off-hours or weekends.

Skills/Qualifications:

  • Proficiency in developing and implementing Splunk as a SIEM tool, including actionable alerts, dashboards, and workflows.
  • Strong understanding of network protocols, device event telemetry, and operating systems.
  • Experience with SAAS/cloud-hosted Splunk implementation.
  • Knowledge of advanced cybersecurity tools like endpoint defense systems, network defense tools, and anomaly-detection models.
  • Ability to create and customize dashboards specific to Risk-Based Alerting (RBA) and correlate risk incident rules.
  • Education: Bachelor's, Master's, or PhD in relevant disciplines with 8-15+ years of experience, depending on the degree.
  • Certifications (one or more required):
  • CompTIA Security+
  • Certified Penetration Testing Engineer (CPTE) or Certified Ethical Hacker (CEH)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Systems Security Professional (CISSP) or advanced CISSP specializations

Jobcon Logo Position Details

Posted:

Nov 22, 2024

Employment:

Full-time

Salary:

Not Available

Snaprecruit ID:

SD-CIE-a03113c01d3e14d78344744a7e31f944a3335d1b3ba099b76c9bfc1cfb1d9e37

City:

Morrisville

Job Origin:

CIEPAL_ORGANIC_FEED

Share this job:

  • linkedin

Jobcon Logo
A job sourcing event
In Dallas Fort Worth
Aug 19, 2017 9am-6pm
All job seekers welcome!
Get your FREE tickets

Download mobile appsJust Swipe to apply for jobs. Try it out !

Apple icon

Download on the

Google icon

Download on the

Download mobile appsJust Swipe to apply for jobs.

Apple icon

Download on

Google play icon

Download on

Splunk Cyber Security Solutions Engineer Architect    Apply

Click on the below icons to share this job to Linkedin, Twitter!

Summary:
This position focuses on implementing and optimizing cybersecurity measures through advanced tools like Splunk, Tanium, and Microsoft Defender. The role requires expertise in dynamic detection, risk-based alerting, and developing actionable workflows, along with conducting workshops and supporting incident investigations.

Position Info:

  • Title: Splunk Cyber Security Solutions Engineer /Architect IV
  • Client: Peraton
  • Duration: 8 Months
  • Location: 6001 Hospitality Court, Morrisville, NC 27560
  • Work Mode: Remote for (Morrisville, NC; Falls Church, VA; Eagan, MN) Candidates only

Responsibilities:

  • Implement dynamic detections and integrate alerting platforms such as Tanium, SEP, and Microsoft Defender with risk-based alerting frameworks.
  • Configure and fine-tune Splunk Core and Splunk Enterprise Security (ES) services, developing advanced use cases for cybersecurity.
  • Participate in architecting, designing, and building solutions for the Continuous Monitoring Program.
  • Provide training, workshops, and lifecycle support for CISO teams on Splunk usage and content development.
  • Support incident investigations and systems maintenance during off-hours or weekends.

Skills/Qualifications:

  • Proficiency in developing and implementing Splunk as a SIEM tool, including actionable alerts, dashboards, and workflows.
  • Strong understanding of network protocols, device event telemetry, and operating systems.
  • Experience with SAAS/cloud-hosted Splunk implementation.
  • Knowledge of advanced cybersecurity tools like endpoint defense systems, network defense tools, and anomaly-detection models.
  • Ability to create and customize dashboards specific to Risk-Based Alerting (RBA) and correlate risk incident rules.
  • Education: Bachelor's, Master's, or PhD in relevant disciplines with 8-15+ years of experience, depending on the degree.
  • Certifications (one or more required):
  • CompTIA Security+
  • Certified Penetration Testing Engineer (CPTE) or Certified Ethical Hacker (CEH)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Systems Security Professional (CISSP) or advanced CISSP specializations

Loading
Please wait..!!