Senior SIEM/Splunk Technician

$130,000 - $145,000

Full Time

  • No Travel Required

Skills

  • SIEM
  • Splunk
  • Threat Intelligence

Job Description

Position Description:

To support our Federal client’s Cybersecurity Operations (CyberOps) program, Harmonics is seeking a Senior SIEM/Splunk Technician to conduct Network/Host Monitoring, Cyber Threat Intelligence, Security Event Correlation & Analysis, Incident Response, Security Tool Maintenance, Vulnerability & Compliance Scanning, and Cybersecurity Operations Tool Development. The program provides continuous monitoring of government systems on a 24x7x365 basis using various automated tools.

Note: This is for a proposal with an anticipated start date of September 2023. Candidates will be required to sign a non-binding letter of intent. 

Note: This position is 100% remote but will work East Coast business hours (8-5p). Candidates must be able to obtain a government public trust security clearance. 

As a Consultant, you will:

  • Work with Government clients to mitigate cyber risk and threats
  • Identify opportunities for efficiencies in process and innovative approaches to completing projects
  • Participate in team problem solving efforts and offer ideas to solve client issues
  • Conduct relevant research, data analysis, and create reports
  • Maintain responsibility for completion and accuracy of work products
  • Actively expand consulting skills and professional development through training courses, mentoring, and daily interaction with clients
  • Identify and evaluate complex business and technology risks
  • Understand how business functions operate and how industry trends impact a client's business
  • Assess/develop/mature an organization's cyber risk strategy and posture, as it relates to data risk, cyber risk management, cyber risk frameworks and policies, and/or cyber risk measures, methods, and reporting
  • Strategically drive the development and execution of risk assessments and mitigation plans to enhance the client's ability to identify, evaluate, prioritize, and mitigate risks
  • Implement risk management solutions aligned to the client's vision and strategic priorities
  • Deliver key messages with clarity, confidence, and poise to instill confidence in clients
  • Drive development and implementation of cyber strategies targeted on key client's risk and business needs, and enhanced by leading practices
  • Develop impactful reports and presentations that support the achievement of engagement goals and objectives

Minimum qualifications:

  • Subject Matter Expert in Splunk data onboarding and normalization
  • Demonstrated experience maintaining Splunk as an enterprise SIEM solution

Highly Valued qualifications:

  • 5+ years’ experience maintaining Splunk Enterprise
  • 3+ years’ experience with Splunk Enterprise Security
  • 1+ years’ experience with Splunk SOAR (formerly Phantom) and/or Splunk User Behavior Analytics (UBA)
  • Splunk Certified Engineer: Splunk Certified Enterprise Security Admin or Splunk Enterprise Certified Admins