Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Security Content Engineer - Splunk

BlueVoyant

BlueVoyant is looking for a Security Operations Center Security Content Engineer to help our global customers manage their Splunk cloud security solutions. You will be part of a fast-paced team that helps customers to efficiently and effectively derive security insights through generating detection logic, automation and visualizations. This position is fully remote. Key Responsibilities Ideate and create client-facing detections to surface security and IT operations concerns Collaborate with clients to design and implement visualizations to assist clients with understanding security posture, interesting events, and operations metrics Assist clients with testing and tuning detection logic to minimize false positives, alert duplication, and whitelisting Identify opportunities for client-specific needs to become base content for all MSS, including rules, automations, and dashboards Assist integration teams in identifying opportunities for log content reduction and removal of irrelevant events Deliver functional value resulting from research in the form of queries, signatures, rules, and contextual information (knowledge base articles) Serve as a Technical SOC SME in support to customers (customer facing) and support to sales and marketing Supplemental in-depth research of exploits and vulnerabilities which have a high likelihood of occurring within BlueVoyant customer environments Assist in the advancement of security policies, procedures, and automation Serve as the technical escalation point and mentor for junior detection engineers and Sentinel support staff Regularly communicate with customer IT teams to inform them of issues, help them remediate, and ensure that they continue to operate business as usual Assist with advancing security standard operating procedures and incident response reporting. Qualifications Excellent teamwork skills Previous signature writing / algorithm creation experience Ability to analyze event logs and recognize signs of cyber intrusions/attacks Hands-on experience with Microsoft Azure Sentinel, Defender ATP, O365 ATP, and other Microsoft security suites. Hands-on experience with Microsoft Threat Protection suite of security solutions (Defender ATP, Azure ATP, Office 365 ATP, Microsoft Cloud Application Security), Azure Active Directory, Azure Security Center, Azure Log Analytics, and M365 suite of solutions. Hands-on experience for the following: Develop, automate, and orchestrate tasks (playbooks) with logic apps based on certain events Ability to advise customers on the Microsoft Cloud Security capabilities across the Azure platform. Strong experience with scripting languages (Python, PowerShell, others) Strong experience with digital forensic analysis (host, network, other) and blue team operations Strong knowledge and understanding of network protocols and devices. Ability to work directly with customers to understand requirements for and feedback on security services Advanced written and verbal communication skills and the ability to present complex technical topics in clear and easy-to-understand language Strong teamwork and interpersonal skills, including the ability to work effectively with a globally distributed team Skilled in the creation of signatures for security tools Familiarity with tools such as Wireshark, TCP Dump, Security Onion, and Splunk Strong knowledge of the following: SIEM Packet Analysis SSL Decryption

HIDS/NIDS

Network Monitoring Tools Case Management System Knowledge Base Web Security Gateway Email Security Anti-Virus Network Access Control Encryption Vulnerability Identification Preferred Qualifications Experience in intrusion analysis, digital forensics, penetration testing, detection engineering or related areas 7+ years of experience in information technology or information security, 4 of which were spent dealing directly with SIEM solutions and detection content creation Microsoft 365 Certified: Security Administrator Associate and GCFA, GCFE, or OSCP preferred Familiarity with Azure, .Net programming, jupyter notebooks, and scripting / development using web APIs Education Minimum bachelor’s degree in Information Security, Computer Science, or other IT-related field or equivalent experience About BlueVoyant At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics, and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Accuracy! Actionability! Timeliness! Scalability! Led by CEO, Jim Rosenthal, BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies. Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest, and Latin America. All employees must be authorized to work in the United States. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. Disclaimer: Please note that pursuant to contractual requirements and applicable law, in order for employees to perform work on some of the company’s federal contracts, U.S. citizenship is required. Accordingly, an employee’s ability to perform work on such contracts is contingent upon the company’s verification of the employee’s citizenship status. Furthermore, individuals may be subject to additional background checks and fingerprinting. Seniority level Mid-Senior level Employment type Full-time Job function Information Technology and Engineering Industries Computer and Network Security #J-18808-Ljbffr BlueVoyant

Vacancy posted 4 days ago
Similar jobs that could be interesting for youBased on the Security Content Engineer - Splunk in Annapolis, MD vacancy
  •  ...appropriate and following when needed. Description: We are seeking a Security Engineer to design, develop, and maintain enterprise security audit...  .... The ideal candidate will have strong experience using Splunk to visualize security events, compliance posture, and... 
    Splunk
    Contract work
    Temporary work
    Work experience placement
    Immediate start

    Unisity, LLC

    Annapolis, MD
    4 days ago
  • A Service-Disabled Veteran Owned Business in Maryland seeks a Security Engineer to design, develop, and maintain Splunk dashboards for security monitoring. This position requires strong proficiency with audit data collection and compliance, particularly in regulated environments... 
    Splunk
    Contract work

    Unisity, LLC

    Annapolis, MD
    5 days ago
  •  ...is seeking a highly skilled and motivated Information Systems Security Engineer (ISSE) to join our team. Our ISSEs play a critical role in...  ...CNSS, DoD STIGs Security tools such as ACAS, Nessus, Tenable, Splunk, Wireshark, HBSS, McAfee ePO Security technologies including... 
    Splunk

    RPMGlobal

    Annapolis, MD
    1 day ago
  • $102.5k - $188.9k

    Job Summary As a Splunk Engineer/Architect, you will design, implement, and optimize Splunk solutions to support security monitoring, log management, and operational analytics for clients. Responsibilities Design, implement, and optimize Splunk architectures to support... 
    Splunk

    PowerToFly

    Annapolis, MD
    1 day ago
  • $114k - $142k

     ...ready to help us make the future? We are seeking a Cyber Security Architect/Engineer II - Active Directory/IAM to join our team. In this role,...  ...Minimum 2 years’ technical experience with IAM modules, Splunk, Active Directory and Azure WE VALUE Experience in IAM (as... 
    Splunk
    Remote job
    Permanent employment
    Temporary work
    Work experience placement
    Flexible hours

    Honeywell International, Inc.

    Annapolis, MD
    3 days ago
  • $92.3k - $166.85k

     ...networking, authentication, and system security. Coach and review the work of lower‑level...  ...monitoring platforms, such as Security Onion or Splunk. Worked with Red Hat Identity Management...  ...while working effectively with engineers and customers. Ability to handle and prioritize... 
    Splunk
    Immediate start
    Flexible hours

    Fairygodboss

    Annapolis, MD
    5 days ago
  •  ...Consulting, LLC today. Responsibilities Reverse‑engineer and document all existing EAIB...  ...tracing, and Prometheus metrics. Establish secure authentication/authorization using OAuth2...  ...; AWS, Prometheus, Grafana, AppDynamics, Splunk, and FluentBit. Join the team at Barrow Wise... 
    Splunk
    Contract work
    Remote work

    EmergencyMD

    Annapolis, MD
    4 days ago
  • Shield Consulting Solutions is hiring a Software Engineer in Maryland. The role requires a minimum of 12 years of experience and a Bachelor's degree in a technical discipline. Active TS/SCI clearance with Polygraph is mandatory. The position offers an excellent benefits... 
    Full time
    Immediate start

    Shield Consulting Solutions

    Annapolis, MD
    3 days ago
  • $134.1k - $241.4k

     ...suited for candidates with prior analytic experience in network security and network monitoring. Your role will provide advanced network...  ..., and identifying atypical events. Experience with Elastic/Splunk/ or other Security Information and Event Management (SIEM) experience... 
    Splunk
    Flexible hours

    Parsons Company

    Annapolis, MD
    3 days ago
  • $90k - $230k

     ...A cybersecurity solutions provider in Maryland is looking for experts in various roles, including Security Controls Assessor and Cybersecurity Network Analyst. Candidates must have a B.S. in Cybersecurity or related field, relevant certifications, and clearances. Salary... 

    Nexxis Solutions

    Annapolis, MD
    5 days ago
  • $165k - $225k

     ...Cyber Analyst to support advanced network security monitoring, threat analysis, and cyber...  ...insights. Collaborate with development and engineering teams to define requirements and enhance...  ...with SIEM tools such as Elastic, Splunk, or similar platforms. Strong understanding... 
    Splunk
    Summer holiday
    Immediate start

    Red Alpha

    Annapolis, MD
    5 days ago
  • RPMGlobal seeks a Systems Engineer to design and maintain complex systems supporting critical national defense missions. Ideal candidates...  ...candidate is proficient in cybersecurity frameworks and has experience with tools such as JIRA and Splunk. #J-18808-Ljbffr RPMGlobal
    Splunk

    RPMGlobal

    Annapolis, MD
    1 day ago
  • $86.9k - $198k

     ...analysis. The role requires TS/SCI clearance and a Bachelor’s degree, with responsibilities including reverse engineering and using AI to enhance system security. Comprehensive benefits and competitive salary ranging from $86,900 to $198,000 are offered. #J-18808-Ljbffr... 
    Remote job

    Booz Allen Hamilton

    Annapolis, MD
    3 days ago
  •  ...Network Security Engineer LOCATION Annapolis Junction, MD 20701 CLEARANCE TS/SCI Full Poly (Please note this position requires full U.S. Citizenship) KEY SUMMARY We are seeking a skilled and passionate Network Security Engineer to join our team... 
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek

    Annapolis, MD
    2 days ago
  •  ...Network Security Engineer Hybrid: Annapolis, MD bout the Job Duration: Long term Contract (possibility of extension) Location...  ...Intrusion Detection and Prevention with Palo Alto networks. o Content Filtering Palo Alto networks. o Virtual Private Networks... 
    Hourly pay
    Long term contract
    Temporary work

    DATASOFT TECHNOLOGIES

    Annapolis, MD
    2 days ago
  •  ...Position: - Network Security Engineer Location: - Maryland Judiciary Information Systems, 189 Harry S. Truman Parkway, Annapolis, MD 21...  ...Intrusion Detection and Prevention with Palo Alto networks. Content Filtering Palo Alto networks. Virtual Private Networks... 
    Remote work
    Monday to Friday

    HonorVet Technologies

    Annapolis, MD
    2 days ago
  • $112.8k - $257k

     ...Security Engineer The Opportunity: We need a technical professional responsible for designing, building, and maintaining systems that protect an organization's data, networks, and IT infrastructure from cyber-attacks. In this position, you will focus on proactive... 
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    Booz Allen Hamilton

    Annapolis, MD
    3 days ago
  • $150k - $250k

     ...need to thrive - in our offices or yours. Job Summary The Security Engineer - Google collaborates with account and specialty teams to...  ...firewalls, Anti-DDOS Protection, Threat Management Protection, Content Filtering, Ingress/Egress management) - Intermediate... 
    Work experience placement
    Work at office
    Remote work
    Worldwide
    Flexible hours

    SHI GmbH

    Annapolis, MD
    2 days ago
  • $200k

     ...is a leading provider of cybersecurity, software and systems engineering and IT services to the U.S. intelligence and defense communities...  ...to high-level decision makers that enhance our nation's security. In an ultra-competitive environment, Synergy ECP has thrived... 
    Work at office
    Flexible hours

    SW Complete

    Annapolis, MD
    2 days ago
  • $255k - $265k

    Shield Consulting Solutions is seeking an HPC Monitoring & Observability Engineer in Annapolis Junction, MD. This role requires a strong background in software engineering with 12 years of experience and an active TS/SCI clearance. Your responsibilities will include designing... 
    Splunk

    Shield Consulting Solutions

    Annapolis, MD
    2 days ago
  •  ...Reflexive Concepts is seeking a skilled Software Engineer IV to join our team! The Software Engineer shall be part of a team responsible...  ...this position, the Software Engineer must be proficient with Splunk. Qualifications: Active TS/SCI + FS... 
    Splunk

    Reflexive Concepts

    Annapolis, MD
    4 days ago
  •  ...In this Infrastructure focused Software Engineering role, you'll help develop, automate, and...  ...container orchestration tools to support secure, scalable, and resilient HPC operations....  ...Analytics platform solutions such as Splunk Familiar with Agile, Scrum, or Scaled... 
    Splunk
    Visa sponsorship
    Work visa

    Gigatec Engineering

    Annapolis, MD
    5 days ago
  •  ...VMWare, KVM, Docker for Linux; Hyper V, VMWare for Windows) Some experience with monitoring and logging tools (e.g. Splunk, Zabbix, ELK) Understanding of security best practices and protocols Security clearance level: Active TS/SCI w/ Polygraph US citizenship required GDIT... 
    Splunk

    General Dynamics Information Technology

    Annapolis, MD
    4 days ago
  •  ...Experts, LLC is seeking a High-Performance Computing (HPC) Systems Engineer to support complex system design and diagnostics. The ideal...  ...understanding of system architectures and leverage monitoring tools like Splunk to identify and solve hardware issues. Applicants must have... 
    Splunk

    Trexllc

    Annapolis, MD
    3 days ago
  •  ...Manager to oversee IT systems' monitoring and optimization. This role requires expertise in performance analysis, including using Splunk and related tools. The ideal candidate has over 8 years of experience in performance management roles and must obtain a SECRET clearance... 
    Splunk

    ASM Research, An Accenture Federal Services Company

    Annapolis, MD
    1 day ago
  •  ...seeking an experienced High-Performance Computing (HPC) Systems Engineer in Maryland. The successful candidate will support complex...  ...diagnostics. Responsibilities include leveraging monitoring tools like Splunk, analyzing system behavior, and collaborating with teams to... 
    Splunk

    Power3 Solutions and Partnering Companies

    Annapolis, MD
    1 day ago
  • Shield Consulting Solutions is seeking an HPC Monitoring & Observability Engineer to work in Annapolis Junction, MD. This role requires expertise in Splunk and a TS/SCI clearance. The successful candidate will be responsible for developing and maintaining a robust metrics... 
    Splunk

    Shield Consulting Solutions

    Annapolis, MD
    2 days ago
  • PowerToFly in Maryland is seeking a Splunk Engineer/Architect responsible for designing, implementing, and optimizing Splunk solutions. This role supports security monitoring and operational analytics for clients. The ideal candidate holds a Bachelor's degree related to... 
    Splunk

    PowerToFly

    Annapolis, MD
    1 day ago
  • $218k - $225k

    Halogen Engineering Group, Inc is seeking a Software Engineer with over 12 years of experience, proficient in HPC and Splunk, to design and maintain systems for monitoring and enhancing HPC infrastructure. The role requires a TS/SCI clearance and includes responsibilities... 
    Splunk
    Full time

    Halogen Engineering Group, Inc

    Annapolis, MD
    4 days ago
  •  ...addition, the System Administrator shall maintain the system’s security posture, along with implementing operating systems enhancements...  ...Hat Satellite systems management solution Familiarity using Splunk for ingesting, indexing, searching, monitoring, and analyzing... 
    Splunk
    Visa sponsorship
    Work visa

    Gigatec Engineering

    Annapolis, MD
    5 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Security Content Engineer - Splunk. Be the first to apply!