SOC Security Engineer (Splunk)

3 years of Splunk Administration and or Engineering, Leading Tier 2 SOC, Splunk Certification, IDS/IPS, Masters Degree and 12 years overall IT, or Bachelors and 14 years, 6 years supporting SOC operations, Splunk Monitoring
Full Time
Depends on Experience
Work from home not available Travel not required

Job Description

This role will require you to be 100% on site (NO REMOTE OPTIONS)

Due to Federal Security Clearance Requirements: U.S. Citizenship, W2 ONLY

Required Qualifications:

  • Master s Degree or 2 additional years of work experience for each educational level (Bachelors, Associates)
  • 12 years of total IT experience
  • 6 years of experience working in or directly supporting a Security Operations Center/SOC environment
  • 2 years of experience as a Tier 2 analyst
  • Preferred Qualifications:

  • 3 years of Splunk or related SIEM experience including creating reports, creating content, creating and running queries, defining correlation searches
  • At least one of the following certifications: GCIH, GCIA, GPEN, GCFA, EnCE, OSCP, Splunk Certified Power User
  • Experience with Splunk Enterprise Security (ES), Tanium
  • Advanced training on anomaly detection; tool-specific training for data aggregation and analysis and threat intelligence
  • Fuse locally derived and externally sourced cyber threat intelligence into signatures, detection techniques, and analytics intended to detect and track the advanced threat
  • Strong understanding of root causes of malware infections and proactive mitigation
  • Strong understanding of lateral movement and footholds
  • Strong understanding of data exfiltration techniques. Demonstrated ability in critical thinking, problem solving, and analytics
  • Real world experience analyzing complex attacks and understand TTPs of threat actors
  • Experience in network/host-based intrusion analysis, malware analysis, forensics, and cyber threat intel
  • Knowledge of advanced threat actors and complex attacks

Posted By

Kaushik Rathi

1801 Reston Parkway, Suite 202 Reston, VA, 20190

Contact
Dice Id : PRISMVA
Position Id : 24963-JH
Originally Posted : 1 month ago
Have a Job? Post it

Similar Positions

Security Engineer - Splunk
  • Omm IT Solutions
  • Windsor Mill, MD
Splunk Engineer
  • Deloitte
  • Arlington, VA
Cyber Security Analyst (SOC Analyst)
  • Piper Companies
  • Na Springfield, VA
Tier 2 SOC Analysts
  • Base One Technologies
  • Washington D.c., DC
Splunk Engineer/Architect
  • Valiant Solutions LLC
  • Washington D.c., DC
SOC Tier 3 Analyst
  • Comptech Associates Inc
  • Greenbelt, MD
SOC Incident Response
  • CyberData Technologies
  • Rockville, MD
Computer Systems Security Analyst (Splunk)
  • NetVision Resources Inc.
  • Woodlawn, MD
SOC Tier II Analyst
  • CGI Group, Inc.
  • Rockville, MD
Cyber SOC Analyst
  • Accenture Federal Services
  • Greenbelt, MD
Forensic Cybersecurity Analyst
  • Infinity Consulting Solutions
  • Owings Mills, MD
Senior Malware Analyst
  • NetCentrics Corp
  • Alexandria, VA