Open app
Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Splunk Enterprise Security Engineer

RIT Solutions

Baltimore, MD
Splunk Enterprise Security Engineer

Location: Hybrid (Baltimore, MD) Duration: Year + Customer: Social Security Administration

Education: Bachelor's Degree (4 years) or Higher

Description of Work: Seeking a Splunk Enterprise Security Engineer who can develop custom detection content (correlation rules) identify threat activity. This includes developing notable events, visualizations, forms, reports, alerts, as well as Splunk Apps, Technology Add-ons, and normalize data sources to the Common Information Model. The candidate will provide optimization of data flow using aggregation, filters, etc. The Splunk Engineer will provide overall engineering, and administration in supporting a very large distributed clustered Splunk environment consisting of search heads, indexers, deployers, deployment servers, heavy/universal forwarders and Splunk Enterprise Security app, spanning security, performance, and operational roles. The Engineer should be proficient with recognizing and onboarding new data sources into Splunk, analyzing the data for anomalies and trends, and building dashboards highlighting the key trends of the data. The Splunk engineer should be proficient within a Linux environment, editing and maintaining Splunk configuration files and apps.

Duties and Responsibilities:

  • Alert use case development
  • Upgrade Splunk apps required by Splunk ES upgrades
  • Splunk Enterprise Security administration and management
  • Configure notable event actions, action menus and Adaptive Responses
  • Data onboarding and data ingestion normalization recommendations
  • Strong knowledge of security risk procedures, security patterns, authentication technologies and security attack pathologies
  • Develop, evaluate, and document, specific metrics for management purpose
  • Write complex code to install and manage the Splunk enterprise development
  • Performing maintenance and optimization of existing clustered Splunk deployments
  • Create Dashboards to monitor the traffic volumes, response times, errors, and warnings across various data centers
  • Monitor the web portals, log files and databases
  • Provide debugging and monitoring capabilities
  • Design and Develop Splunk for routine use
  • Solve complex Integration challenges and debug complex configuration issues
  • Consult with stakeholders to establish, maintain and refresh their strategic direction in cloud adoption
  • Become knowledgeable on the CDM technical requirements for the federal government's CDM program. Understand your role in CDM activities.
  • Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access.
  • Design, manage, and maintain enterprise SIEM infrastructure to improve data ingestion processes, including architectural work on data pipelines to ensure optimal flow of data.
  • Maintenance, configuration and implementing products, appliances and devices on the enterprise network

Basic Qualifications:

  • Minimum knowledge, skills, abilities needed.
  • Bachelor's degree and 7 years of experience, Master's degree and 5 years of experience, or 11 years of experience in lieu of a degree
  • At least 4 years' experience using customer-focused Splunk Enterprise Security SIEM engineering background - SME knowledge of ES v4.7
  • At least 4 years' experience in a senior Splunk role working in a Splunk clustered environment supporting SOC or NOC environments
  • At least 4 years of experience with:
    • In-depth knowledge of designing, upgrading, maintaining and implementing network devices on a large-scale enterprise
    • Direct experience with Splunk Engineering and data integration
    • Prior SIEM data modelling experience on similar platform at scale (>50 servers)
    • Scripting and development skills in Python/Perl with deep comprehension of regular expressions
    • Coordination and communication with other remotely deployed team members
    • Developing documentation with processes and procedures
    • Proposing, implementing automation features in a large enterprise environment
  • At least 3 years of experience with Linux and SQL/ODBC interfaces
  • At least 2 years of experience in app interface development, using REST API's
  • Hold active Splunk Core Certifications of at least Splunk Architect
  • Minimum of 3 year of experience in developing and tailoring reporting from network security tools.
  • Must be able to obtain and maintain a US Public Trust clearance

Preferred Qualifications:

  • Experience with Splunk Common Information Model (CIM) and Enterprise Analytic
  • Strong problem-solving abilities with an analytic and qualitative eye for reasoning under pressure.
  • Self-starter with the ability to independently prioritize and complete multiple tasks with little to no supervision
  • Knowledge of Cloud Services such as AWS, Azure, Office365
  • Ability to script in one more of the following computer languages Python, Bash, Visual Basic or Powershell
  • Experience in automating Splunk Deployments and orchestration with in a Cloud environment
Apply
Vacancy posted 20 days ago
Similar jobs that could be interesting for youBased on the Splunk Enterprise Security Engineer in Baltimore, MD vacancy
  • Splunk Enterprise Security Engineer
     ...Job Title: Splunk Enterprise Security Engineer Location: Hybrid (Baltimore, MD) Duration: Year + Customer: Social Security Administration Education: Bachelor's Degree (4 years) or Higher Description of Work: Seeking a Splunk Enterprise... 
    Splunk
    Remote work
    Night shift

    RIT Solutions, Inc.

    Baltimore, MD
    4 days ago
  • Security Engineer - Baltimore, MD
     ...Security Engineer Location: Baltimore, MD Duration: Contract Rate: DOE US Citizens, GC, EAD (H4, L2), E3 TN visa holders preferred...  .... At least four (4) years of experience working with Splunk Enterprise Security or similar tools Strong information security background... 
    Splunk
    Contract work

    Georgia IT Inc

    Baltimore, MD
    17 days ago
  • Security Engineer- Philippines
     ...integrating MDR with offensive security, threat hunting, security...  ...are looking for a Security Engineer to support and enhance our Managed...  ...~ Hands-on experience with enterprise firewall platforms (e.g.,...  ...Familiarity with SIEM tools (Splunk, Sentinel, QRadar, etc.) ~... 
    Splunk
    Local area
    Remote work

    CYBERMAXX, LLC

    Linthicum Heights, MD
    15 days ago
  • Director, Cloud Security Architecture & Engineering

    $175k - $200k

     ...seeking an experienced Director, Cloud Security Architecture and Engineering to serve as a hands-on leader,...  ...Engineering Own and evolve the enterprise cloud security architecture across...  ...security platforms such as Zscaler, Splunk, and BeyondTrust to enable centralized... 
    Splunk
    Full time
    Work experience placement
    Work at office
    Remote work
    Work from home
    Flexible hours
    Night shift
    Weekend work
    2 days per week

    Breakthru Beverage Group

    Baltimore, MD
    4 days ago
  • Network Monitoring System Developer - Level 2 (Cyber / Data Engineer)
     ...strong expertise in cybersecurity data engineering, analytics, and monitoring system integration...  ...Integrate systems such as Splunk, Xacta, DbConnect Analyze and categorize...  ...experience ~ Experience with system security and risk assessment Preferred Skills... 
    Splunk

    FIRST SOFTSOLUTIONS INC

    Gwynn Oak, MD
    3 days ago
  • Infrastructure Security Engineer
     ...Teammate We are seeking a Cybersecurity Engineer who is ready to take on broad technical...  ...both customer-facing and internal security engineering initiatives. This role sits...  ...such as CCNP Security, JNCIP-Sec, PCNSE, Splunk Architect, or equivalent (required) ~4... 
    Splunk

    Skyline Technology Solutions

    Glen Burnie, MD
    3 days ago
  • Senior Cyber Security Engineer

    $157k - $171k

     ...DLH delivers improved health and national security readiness solutions for federal programs...  ...research and development, systems engineering and integration, and digital transformation...  ...with security tools such as SIEM (e.g., Splunk), vulnerability scanners (e.g., Tenable,... 
    Splunk
    Temporary work
    Work at office
    Flexible hours

    DLH Corporation

    Baltimore, MD
    4 days ago
  • Advanced Security Engineer, Enterprise Security

    $104k - $156k

     ...Type Remote/Hybrid Job Overview As an Advanced Security Engineer focused on Endpoint Security, you will design, build, and operate...  ...that protect Relativity's employee endpoints and the enterprise systems they access. You will help establish hardened, standardized... 
    Remote work

    Relativity

    Baltimore, MD
    3 days ago
  • Cyber Security Analyst - Incident Response

    $65 - $68 per hour

     ...the energy industry, is seeking a Cyber Security Analyst - Incident Response to join their...  ...of the Cyber Defense team supporting enterprise-wide security operations. The ideal candidate...  ...'s degree.Proficiency with EDR tools, Splunk, and experience with ESAs, sandboxing,... 
    Splunk
    Remote work
    Flexible hours

    ManpowerGroup Global, Inc.

    Baltimore, MD
    3 days ago
  • Network Monitoring System Developer Level 2
     ...Cyber Systems Engineer Seeking a Cyber Systems Engineer who will oversee the collection, storage and interpretation of cyber security data to enhance the Continuous Diagnostics and Mitigation...  ...from data source to I/O through Splunk Minimum 4 -6 years of experience... 
    Splunk
    Permanent employment

    Rho

    Gwynn Oak, MD
    5 days ago
  • Systems Analyst, Senior
     ...applications in AWS. Generate and install security certificates and PGP keys. Work...  ...app logs, and system logs from Splunk. Install, configure and manage Informatica...  ...-day operations functions of a complex enterprise system. minimum of five (5) years of... 
    Splunk
    Flexible hours
    Rotating shift
    Afternoon shift

    HonorVet Technologies

    Baltimore, MD
    5 days ago
  • Cyber/Security Operations Analyst
     ...Cyber/Security Operations Analyst Comtech is a woman-owned small business founded in...  ...development, infrastructure, Cyber security, and enterprise content/data management services. We...  ...ePO, Nessus Security Manager, and Splunk Enterprise for the Clients Office of Information... 
    Splunk
    For contractors
    Work at office

    Comtech LLC

    Baltimore, MD
    4 days ago
  • Cyber Defense Analyst 3 (CDA3)

    $7.5k

     ...Location: Central Maryland Security Clearance Required: Security...  ...success through Security Engineering, Risk Management and Assessment...  .... Working knowledge of enterprise-level network intrusion detection...  ...management suites (such as Splunk, ArcSight, Kibana, LogRhythm... 
    Splunk
    Contract work
    Work experience placement
    Immediate start
    Flexible hours
    Shift work

    RealmOne

    Baltimore, MD
    5 days ago
  • Sr. Principal Computer Systems Analyst - Linux

    $123.4k - $185k

     ...to missions. In rapidly changing global security environments, Northrop Grumman brings informed...  .... Define, implement, and maintain enterprise-wide system enhancements, including...  ...monitoring and security tools support, such as Splunk and SolarWinds. Scripting and... 
    Splunk
    Full time
    Remote work
    Relocation package
    Flexible hours
    Shift work
    Weekend work

    Northrop Grumman

    Baltimore, MD
    4 days ago
  • SME Network Engineer

    $56 - $66 per hour

     ...seeking a Network Operations Engineer to support mission-critical network...  ...within a federal enterprise environment. This role is responsible...  ...continuous improvement of secure, highly available network systems...  ...monitoring tools (e.g., Splunk, Nagios) • Familiarity with... 
    Splunk
    Contract work

    Insight Global

    Windsor Mill, MD
    4 days ago
  • Application Engineer

    $66 - $73 per hour

     ...Application Engineer Client:  IRS - Branded Prescription...  ...vulnerability remediation, audits, and security initiatives. Deploy and...  ..., systems engineering, or enterprise application support experience...  .../Red Hat, Windows Server, Splunk, and troubleshooting complex... 
    Splunk
    Remote work

    SMX Services & Consulting

    Baltimore, MD
    3 days ago
  • Network Monitoring System Engineer Level 2
     ...Title Architect and evolve enterprise network monitoring solutions...  ...with SIEM/SOAR tools (e.g., Splunk) and other enterprise...  ...operational maturity Mentor engineering teams and ensure a shift from...  ...availability, compliance, and security requirements Position... 
    Splunk
    Permanent employment
    Shift work
    Night shift

    Rho

    Gwynn Oak, MD
    5 days ago
  • Computer Systems Security Analyst 3
     ...network, software, and system engineers, PC desktop technicians,...  ...modify file permissions and security access lists. Test new releases...  ...(e.g., HBSS, SolarWinds, Splunk) ~ Basic scripting experience...  ...imaging and deployment in enterprise environments ~... 
    Splunk
    Full time
    Contract work

    Artech

    Linthicum Heights, MD
    2 days ago
  • Application Engineer 3 (SEAR)

    $152k - $162k

     ...make a difference! Application Engineer III! Active TS/SCI with Polygraph...  ...instances. • Assist and incorporate security compliance controls as applicable. •...  ...Docker, Kubernetes • Elasticsearch, Splunk • Scripting (bash, Python) Salary... 
    Splunk
    Contract work
    Work experience placement
    Immediate start

    FLASH Technology Group

    Linthicum Heights, MD
    1 day ago
  • Security Design Engineer
     ...you identify and match your skills and experience to the best job possible.Take your first steps to an exciting new career. Security Design Engineer Security Design Engineer Job Type: Direct Hire Job ID: 11408 Security Design Engineer, McLean, VA Our client is seeking... 
    Permanent employment
    Contract work
    Remote work

    The Aci Group, Inc

    Towson, MD
    1 day ago
  • Sr. Network Security Engineer

    $100 - $107 per hour

     ...Sr. Network Security Engineer Baltimore, Maryland, United States $ 100.00 - 107.00 (US Dollar) About the Job Sr. Network Security Engineer needs 5+ years of experience designing, implementing, managing, and troubleshooting Palo Alto firewalls Sr. Network... 
    Night shift
    Weekend work

    Global Channel Management

    Baltimore, MD
    2 days ago
  • Senior IT Security Engineer

    $92k - $120k

     ...Information Technology Job Description Summary: The Senior IT Security Engineer is responsible for planning, deploying, administering, and...  ..., DevSecOps and SSDLC, etc.). Monitoring and managing enterprise security systems, cloud environments, and SaaS environments... 
    Full time
    Work experience placement
    Work at office
    Remote work
    Work from home
    Flexible hours
    2 days per week

    Breakthru Beverage Group

    Linthicum Heights, MD
    12 days ago
  • Gigamon Network Engineer
     ...GuidePoint Security provides trusted cybersecurity expertise, solutions and services that...  ...that mitigate risk. Gigamon Network Engineer An active Top Secret / SCI...  ...environments ~ Familiarity with SIEM platforms (Splunk, ArcSight, or equivalent) and how... 
    Splunk
    For contractors
    Remote work
    Flexible hours

    GuidePoint Security

    Baltimore, MD
    4 days ago
  • Network Security Engineer

    $55 - $60 per hour

     ...hr - $60hr Responsibilities: Remediate IT infrastructure security needs and resolve network vulnerabilities. Monitor computer...  ...Install, configure and support routers and switches in the enterprise environment. Manage enterprise and departmental firewalls.... 
    Work experience placement

    Cynet Systems

    Baltimore, MD
    5 days ago
  • CSfC Network Security Engineer
     ...CSfC Network Security Engineer Tech(x) is an energized small company with experienced, specialized, and progressive thought leaders advancing...  ..., implementation, configuration, and sustainment of secure enterprise and tactical network architectures. The ideal candidate will... 
    Remote work
    Monday to Friday
    Flexible hours

    Tech-X

    Baltimore, MD
    4 days ago
  • Sr. Security Engineer
     ...~7+ years of Security background (CISSP / CISA preferred) ~ Experience with Security Tool Sets (networking, firewall, IPDS/IDS technologies, etc.) ~ Cloud experience (AWS / Azure) ~ Good Project Management and Documentation skills ~... 

    Avani Technology Solutions

    Baltimore, MD
    a month ago
  • OCI Security Engineer
     ...OCI Security Engineer Location: Baltimore/ Remote Duration: 6 months DevSecOps skills Experience in Terraform including providers for Azure, Azure Active Directory, OCI, Okta. General technical understanding of OCI platform and supporting technologies... 
    Remote work

    Georgia IT Inc

    Baltimore, MD
    3 days ago
  • Security Architecture (Engineering)
     ...Palo Alto Security Engineer (W2) Peraton is seeking a Palo Alto Engineer. This position is located in Woodlawn, MD. Provide technical...  ...planning, engineering, and design. Service as the enterprise expert in cross-functional discipline of enterprise network... 
    Weekend work

    Zortech Solutions

    Gwynn Oak, MD
    5 days ago
  • Senior Veritas Enterprise Vault Engineer (Top Secret Clearance Required)
     ...Job Description Job Description Senior Veritas Enterprise Vault Engineer Employment Type: Full-Time, Executive-Level Department: Legal      CGS is seeking a dedicated Senior Veritas Enterprise Vault Engineer to join a fast-paced and hard-working team to assist... 
    Full time
    For contractors
    Remote work
    Flexible hours

    Contact Government Services, LLC

    Baltimore, MD
    2 days ago
  • Cloud Architect Lead
     ...Technology, Computer Science, Software Engineering, Data Science, Information Systems, Mathematics...  ...Requirement: Active CompTIA Security+ certification (must upload a copy of the...  ...technologies. Familiarity with ACAS, Splunk, and SolarWinds. Desired Experience:... 
    Splunk

    Marathon TS

    Baltimore, MD
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Splunk Enterprise Security Engineer. Be the first to apply!

Related searches