Security Content Engineer - Splunk
BlueVoyant
BlueVoyant is looking for a Security Operations Center Security Content Engineer to help our global customers manage their Splunk cloud security solutions. You will be part of a fast-paced team that helps customers to efficiently and effectively derive security insights through generating detection logic, automation and visualizations. This position is fully remote. Key Responsibilities Ideate and create client-facing detections to surface security and IT operations concerns Collaborate with clients to design and implement visualizations to assist clients with understanding security posture, interesting events, and operations metrics Assist clients with testing and tuning detection logic to minimize false positives, alert duplication, and whitelisting Identify opportunities for client-specific needs to become base content for all MSS, including rules, automations, and dashboards Assist integration teams in identifying opportunities for log content reduction and removal of irrelevant events Deliver functional value resulting from research in the form of queries, signatures, rules, and contextual information (knowledge base articles) Serve as a Technical SOC SME in support to customers (customer facing) and support to sales and marketing Supplemental in-depth research of exploits and vulnerabilities which have a high likelihood of occurring within BlueVoyant customer environments Assist in the advancement of security policies, procedures, and automation Serve as the technical escalation point and mentor for junior detection engineers and Sentinel support staff Regularly communicate with customer IT teams to inform them of issues, help them remediate, and ensure that they continue to operate business as usual Assist with advancing security standard operating procedures and incident response reporting. Qualifications Excellent teamwork skills Previous signature writing / algorithm creation experience Ability to analyze event logs and recognize signs of cyber intrusions/attacks Hands-on experience with Microsoft Azure Sentinel, Defender ATP, O365 ATP, and other Microsoft security suites. Hands-on experience with Microsoft Threat Protection suite of security solutions (Defender ATP, Azure ATP, Office 365 ATP, Microsoft Cloud Application Security), Azure Active Directory, Azure Security Center, Azure Log Analytics, and M365 suite of solutions. Hands-on experience for the following: Develop, automate, and orchestrate tasks (playbooks) with logic apps based on certain events Ability to advise customers on the Microsoft Cloud Security capabilities across the Azure platform. Strong experience with scripting languages (Python, PowerShell, others) Strong experience with digital forensic analysis (host, network, other) and blue team operations Strong knowledge and understanding of network protocols and devices. Ability to work directly with customers to understand requirements for and feedback on security services Advanced written and verbal communication skills and the ability to present complex technical topics in clear and easy-to-understand language Strong teamwork and interpersonal skills, including the ability to work effectively with a globally distributed team Skilled in the creation of signatures for security tools Familiarity with tools such as Wireshark, TCP Dump, Security Onion, and Splunk Strong knowledge of the following: SIEM Packet Analysis SSL Decryption
HIDS/NIDS
Network Monitoring Tools Case Management System Knowledge Base Web Security Gateway Email Security Anti-Virus Network Access Control Encryption Vulnerability Identification Preferred Qualifications Experience in intrusion analysis, digital forensics, penetration testing, detection engineering or related areas 7+ years of experience in information technology or information security, 4 of which were spent dealing directly with SIEM solutions and detection content creation Microsoft 365 Certified: Security Administrator Associate and GCFA, GCFE, or OSCP preferred Familiarity with Azure, .Net programming, jupyter notebooks, and scripting / development using web APIs Education Minimum bachelor’s degree in Information Security, Computer Science, or other IT-related field or equivalent experience About BlueVoyant At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics, and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Accuracy! Actionability! Timeliness! Scalability! Led by CEO, Jim Rosenthal, BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies. Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest, and Latin America. All employees must be authorized to work in the United States. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. Disclaimer: Please note that pursuant to contractual requirements and applicable law, in order for employees to perform work on some of the company’s federal contracts, U.S. citizenship is required. Accordingly, an employee’s ability to perform work on such contracts is contingent upon the company’s verification of the employee’s citizenship status. Furthermore, individuals may be subject to additional background checks and fingerprinting. Seniority level Mid-Senior level Employment type Full-time Job function Information Technology and Engineering Industries Computer and Network Security #J-18808-Ljbffr BlueVoyant- ...appropriate and following when needed. Description: We are seeking a Security Engineer to design, develop, and maintain enterprise security audit... .... The ideal candidate will have strong experience using Splunk to visualize security events, compliance posture, and...SplunkContract workTemporary workWork experience placementImmediate start
- A Service-Disabled Veteran Owned Business in Maryland seeks a Security Engineer to design, develop, and maintain Splunk dashboards for security monitoring. This position requires strong proficiency with audit data collection and compliance, particularly in regulated environments...SplunkContract work
- ...is seeking a highly skilled and motivated Information Systems Security Engineer (ISSE) to join our team. Our ISSEs play a critical role in... ...CNSS, DoD STIGs Security tools such as ACAS, Nessus, Tenable, Splunk, Wireshark, HBSS, McAfee ePO Security technologies including...Splunk
$102.5k - $188.9k
Job Summary As a Splunk Engineer/Architect, you will design, implement, and optimize Splunk solutions to support security monitoring, log management, and operational analytics for clients. Responsibilities Design, implement, and optimize Splunk architectures to support...Splunk$114k - $142k
...ready to help us make the future? We are seeking a Cyber Security Architect/Engineer II - Active Directory/IAM to join our team. In this role,... ...Minimum 2 years’ technical experience with IAM modules, Splunk, Active Directory and Azure WE VALUE Experience in IAM (as...SplunkRemote jobPermanent employmentTemporary workWork experience placementFlexible hours$92.3k - $166.85k
...networking, authentication, and system security. Coach and review the work of lower‑level... ...monitoring platforms, such as Security Onion or Splunk. Worked with Red Hat Identity Management... ...while working effectively with engineers and customers. Ability to handle and prioritize...SplunkImmediate startFlexible hours- ...Consulting, LLC today. Responsibilities Reverse‑engineer and document all existing EAIB... ...tracing, and Prometheus metrics. Establish secure authentication/authorization using OAuth2... ...; AWS, Prometheus, Grafana, AppDynamics, Splunk, and FluentBit. Join the team at Barrow Wise...SplunkContract workRemote work
- Shield Consulting Solutions is hiring a Software Engineer in Maryland. The role requires a minimum of 12 years of experience and a Bachelor's degree in a technical discipline. Active TS/SCI clearance with Polygraph is mandatory. The position offers an excellent benefits...Full timeImmediate start
$134.1k - $241.4k
...suited for candidates with prior analytic experience in network security and network monitoring. Your role will provide advanced network... ..., and identifying atypical events. Experience with Elastic/Splunk/ or other Security Information and Event Management (SIEM) experience...SplunkFlexible hours$90k - $230k
...A cybersecurity solutions provider in Maryland is looking for experts in various roles, including Security Controls Assessor and Cybersecurity Network Analyst. Candidates must have a B.S. in Cybersecurity or related field, relevant certifications, and clearances. Salary...$165k - $225k
...Cyber Analyst to support advanced network security monitoring, threat analysis, and cyber... ...insights. Collaborate with development and engineering teams to define requirements and enhance... ...with SIEM tools such as Elastic, Splunk, or similar platforms. Strong understanding...SplunkSummer holidayImmediate start- RPMGlobal seeks a Systems Engineer to design and maintain complex systems supporting critical national defense missions. Ideal candidates... ...candidate is proficient in cybersecurity frameworks and has experience with tools such as JIRA and Splunk. #J-18808-Ljbffr RPMGlobalSplunk
$86.9k - $198k
...analysis. The role requires TS/SCI clearance and a Bachelor’s degree, with responsibilities including reverse engineering and using AI to enhance system security. Comprehensive benefits and competitive salary ranging from $86,900 to $198,000 are offered. #J-18808-Ljbffr...Remote job- ...Network Security Engineer LOCATION Annapolis Junction, MD 20701 CLEARANCE TS/SCI Full Poly (Please note this position requires full U.S. Citizenship) KEY SUMMARY We are seeking a skilled and passionate Network Security Engineer to join our team...Temporary workFor contractorsImmediate startFlexible hours
- ...Network Security Engineer Hybrid: Annapolis, MD bout the Job Duration: Long term Contract (possibility of extension) Location... ...Intrusion Detection and Prevention with Palo Alto networks. o Content Filtering Palo Alto networks. o Virtual Private Networks...Hourly payLong term contractTemporary work
- ...Position: - Network Security Engineer Location: - Maryland Judiciary Information Systems, 189 Harry S. Truman Parkway, Annapolis, MD 21... ...Intrusion Detection and Prevention with Palo Alto networks. Content Filtering Palo Alto networks. Virtual Private Networks...Remote workMonday to Friday
$112.8k - $257k
...Security Engineer The Opportunity: We need a technical professional responsible for designing, building, and maintaining systems that protect an organization's data, networks, and IT infrastructure from cyber-attacks. In this position, you will focus on proactive...Full timeContract workPart timeWork at officeLocal areaRemote work$150k - $250k
...need to thrive - in our offices or yours. Job Summary The Security Engineer - Google collaborates with account and specialty teams to... ...firewalls, Anti-DDOS Protection, Threat Management Protection, Content Filtering, Ingress/Egress management) - Intermediate...Work experience placementWork at officeRemote workWorldwideFlexible hours$200k
...is a leading provider of cybersecurity, software and systems engineering and IT services to the U.S. intelligence and defense communities... ...to high-level decision makers that enhance our nation's security. In an ultra-competitive environment, Synergy ECP has thrived...Work at officeFlexible hours$255k - $265k
Shield Consulting Solutions is seeking an HPC Monitoring & Observability Engineer in Annapolis Junction, MD. This role requires a strong background in software engineering with 12 years of experience and an active TS/SCI clearance. Your responsibilities will include designing...Splunk- ...Reflexive Concepts is seeking a skilled Software Engineer IV to join our team! The Software Engineer shall be part of a team responsible... ...this position, the Software Engineer must be proficient with Splunk. Qualifications: Active TS/SCI + FS...Splunk
- ...In this Infrastructure focused Software Engineering role, you'll help develop, automate, and... ...container orchestration tools to support secure, scalable, and resilient HPC operations.... ...Analytics platform solutions such as Splunk Familiar with Agile, Scrum, or Scaled...SplunkVisa sponsorshipWork visa
- ...VMWare, KVM, Docker for Linux; Hyper V, VMWare for Windows) Some experience with monitoring and logging tools (e.g. Splunk, Zabbix, ELK) Understanding of security best practices and protocols Security clearance level: Active TS/SCI w/ Polygraph US citizenship required GDIT...Splunk
- ...Experts, LLC is seeking a High-Performance Computing (HPC) Systems Engineer to support complex system design and diagnostics. The ideal... ...understanding of system architectures and leverage monitoring tools like Splunk to identify and solve hardware issues. Applicants must have...Splunk
- ...Manager to oversee IT systems' monitoring and optimization. This role requires expertise in performance analysis, including using Splunk and related tools. The ideal candidate has over 8 years of experience in performance management roles and must obtain a SECRET clearance...Splunk
- ...seeking an experienced High-Performance Computing (HPC) Systems Engineer in Maryland. The successful candidate will support complex... ...diagnostics. Responsibilities include leveraging monitoring tools like Splunk, analyzing system behavior, and collaborating with teams to...Splunk
- Shield Consulting Solutions is seeking an HPC Monitoring & Observability Engineer to work in Annapolis Junction, MD. This role requires expertise in Splunk and a TS/SCI clearance. The successful candidate will be responsible for developing and maintaining a robust metrics...Splunk
- PowerToFly in Maryland is seeking a Splunk Engineer/Architect responsible for designing, implementing, and optimizing Splunk solutions. This role supports security monitoring and operational analytics for clients. The ideal candidate holds a Bachelor's degree related to...Splunk
$218k - $225k
Halogen Engineering Group, Inc is seeking a Software Engineer with over 12 years of experience, proficient in HPC and Splunk, to design and maintain systems for monitoring and enhancing HPC infrastructure. The role requires a TS/SCI clearance and includes responsibilities...SplunkFull time- ...addition, the System Administrator shall maintain the system’s security posture, along with implementing operating systems enhancements... ...Hat Satellite systems management solution Familiarity using Splunk for ingesting, indexing, searching, monitoring, and analyzing...SplunkVisa sponsorshipWork visa
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Security Content Engineer - Splunk. Be the first to apply!
- network security engineer Annapolis, MD
- sr security engineer Annapolis, MD
- systems security engineer Annapolis, MD
- senior security operations engineer Annapolis, MD
- security infrastructure engineer Annapolis, MD
- senior application security engineer Annapolis, MD
- offensive security engineer Annapolis, MD
- staff security engineer Annapolis, MD
- information technology security engineer Annapolis, MD
- security software engineer Annapolis, MD

