Overview
Remote
Hybrid
$DOE
Accepts corp to corp applications
Contract - Independent
Contract - W2
Contract - 6+ month(s)
Skills
SPLUNK
cyber security
ciso
Job Details
Hello,
Hope you are doing well.
InfiCare has been providing contingent and direct hiring staffing services across the United States since 2001. We are based outside of Washington D.C. and our diverse client base is comprised of Fortune 500 companies all the way to niche enterprises.
We are currently hiring a Splunk Cyber Security Solutions Engineer II for one of our clients - please find a complete description of the role and requirements below. If you are interested, please feel free to reply to this email or give me a call at .
Job Title: Splunk Cyber Security Solutions Engineer II
Location: Remote/ Work from home
Duration: 6+ months
Job Description:
Splunk Service Engineer is responsible for tuning and configuration of Splunk Core and Splunk Enterprise Security (ES) services, develop use cases with CISO end users to build content and assist in developing advanced security use cases. Participate in requirements gathering, solutions architecting, design and build of technology solutions to support Continuous Monitoring Program. Assist, train, and host workshops for CISO teams. Support off-hours and weekend efforts for incident investigations and systems maintenance.
Required skills:
Develop and Implement Actionable Alerts and Workflow for Splunk as a SIEM (Security Information & Event Management) tool
Develop and Implement Apps & Knowledge Objects (KO) like Dashboard, Reports, Data Models
Work with the Splunk Architect/Admin to promote private KO to Global KO
Assist, and/or train CISO Splunk Engineering team on Data Lifecycle Support
Assist, train, and/or host workshops CISO teams and analysts on Searching and Content Development
Develop and implement automation to improve efficiency of CISO workflows using Splunk
Assist in development of advanced security use cases in Splunk
Develop risk rules and risk incident rules to correlate and alert to significant cyber events.
Develop custom dashboards specific to RBA (Risk Based Alerting) to highlight risk detail, health analysis and risk suppression.
Configure incident response and remediation workflows for ES around notable events (RBA or otherwise alerted)
Develop custom machine learning (ML) models to support anomaly-detection based augmentation of alerting
Work with numerous stakeholders to implement & maintain event logging from various operating systems, applications, identity providers, network infrastructure, and cloud service providers.
Understanding of network protocols, operating systems, applications, and device event telemetry
Have strong communication and collaboration skills, both oral and written, with excellent interpersonal and organization skills.
Understanding of network defense tools (firewall, IPS/IDS, WAF/CDN, etc), endpoint defense tools (EDR, anti-malware) a plus
Experience with SAAS- or cloud-hosted Splunk implementation a plus.
EXPERIENCE LEVEL:
Extensive experience (5+ years) in information security operations and/or related IT operational functions
EDUCATION:
Must possess a minimum of a Bachelor's Degree in Computer Science, Information Technology or Information Security (Masters Degree preferred).
CERTIFICATIONS: (One or more desired)
CompTIA Net+
CompTIA A+
CompTIA Security +
CPTE - Certified Penetration Testing Engineer or CEH - Certified Ethical Hacker
Should you be interested, please send me a copy of your resume in Word/PDF format along with the following details ASAP.
Full Name:
Current Location:
Work Authorization:
Salary / Rate expectation:
Full Name:
Current Location:
Work Authorization:
Salary / Rate expectation:
Regards
Saurabh Kumar
InfiCare Staffing | 22375 Broderick Drive #225 Dulles, VA 20166
Direct: |
| | ;br /> Staffing services since 2001 | NMSDC MBE Certified | The Joint Commission Certified
Manager Contact Info: Vishwa | |
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.