Security Compliance Auditor w/ Splunk, Archer, OCSF, Otel - 100% Remote

  • Posted 11 hours ago | Updated 11 hours ago

Overview

Remote
Depends on Experience
Contract - W2
Contract - 6 Month(s)

Skills

Splunk
RSA Archer
OCSF
Otel
OCSF (Open Cybersecurity Schema Framework)
OpenTelemetry (OTel)

Job Details

We have a 6 month contract position (with possible extension) for a Security Compliance Auditor. The position is 100% remote.

Job Title: Security Compliance Auditor
Location: Remote
Type: Contract (Duration aligned with project lifecycle)

Splunk, RSA Archer, OCSF, Otel

Overview:

We are seeking a Security Compliance Auditor to join a dynamic project team focused on enhancing security compliance through effective event identification and pipeline development. This role will partner closely with developers and security stakeholders to ensure security events are properly captured, classified, and aligned with industry standards such as OCSF and OpenTelemetry (OTel).

The ideal candidate should have strong understanding of modern security compliance frameworks, and the analytical skills needed to extract meaningful insights from large volumes of security log data.

Key Responsibilities:

  • Security Event Identification:
    Analyze application and infrastructure logs in Archer and Splunk to identify high-probability security events and key data attributes.

  • Data Cataloging:
    Develop a comprehensive catalog of log data that clearly distinguishes between security events and non-security events, detailing content, structure, and metadata.

  • Compliance Assessment:
    Use Archer to evaluate current compliance posture against security frameworks, with a focus on identifying gaps and documenting adherence to OCSF and OpenTelemetry standards.

  • Collaboration:
    Work closely with development teams to provide insights and guidance that support the creation and refinement of security data pipelines.

  • Audit Documentation:
    Prepare clear, actionable documentation of findings to support both development and compliance objectives, including compliance status reports and security event mappings.

Required Skills & Experience:

  • 3+ years of experience in a security compliance, audit, or analysis role

  • Proficiency in Splunk for log analysis and event correlation is a plus

  • Experience using RSA Archer for security compliance tracking and audits

  • Strong understanding of OCSF (Open Cybersecurity Schema Framework) and OpenTelemetry (OTel)

  • Knowledge of security logging best practices and application/infrastructure log formats

  • Excellent written communication skills for audit documentation and reporting

  • Will be responsible for catalog of security event data, including

    metadata, attributes, and compliance classifications

  • Provide A detailed list of identified security events vs. non-security events, with supporting documentation

  • Audit summaries and compliance assessments aligned to OCSF and OTel

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.