Join our Talent Network >

Senior Splunk Engineer

Job ID: 2213794
Location: REMOTE WORK, VA, United States
Date Posted: Sep 14, 2022
Category: Cyber
Subcategory: Cybersecurity Spec
Schedule: Full-time
Shift: Day Job
Travel: No
Minimum Clearance Required: None
Clearance Level Must Be Able to Obtain: None
Potential for Remote Work: Remote
Benefits: Click here

Share: mail

Job Description

Description

SAIC has an opening for a Senior Specialist, Splunk Engineer. This position is 100% remote.

This position is responsible for duties around supporting the tools and technologies that are owned and operated by the Enterprise Security Operations Center. The Splunk Engineer will support other organizations within the company delivering solutions for data-driven challenges that enable the company. 

The individual should be knowledgeable on a number of security technologies, have a solid understanding of information security and networking and experience interacting with customers. Will be able to engage on tasks independently, document and communicate work efforts and provide technical support.

The position will be responsible for maintaining and tuning the signatures, interfaces, and technical processes to ensure the tools are operational and meet the requirements of Enterprise Security Operations. 

Job Duties:

  • Maintain inputs, create reports and alerts from Azure & AWS environments.
  • Work with workflow automation to orchestrate with Service Now (SNOW) and other security/infrastructure applications.
  • Install/Configure/Maintain log management/correlation tools and SIEM.
  • Annually audit correlation rules to ensure relevance and efficiency.
  • Work with the ESOC to generate new correlation rules.
  • Create and maintain technical dashboards.
  • Work at the system level to improve performance and make proposals for improvements.
  • Train and mentor members of the ESOC on SIEM capabilities and utilization.
  • Develop appropriate metrics to measure the monitoring program and related process as directed by management.
  • Document procedures for data ingestion.
  • Document and maintain access controls to ensure compliance and governance of data access.
  • Work with Business line to ensure that applications/dashboards meet business needs.
  • Creating and implementing configuration standards, policies, and/or procedures for improved operations and management.
  • Resolving incidents and/or other issues, while integrating with change management processes.
  • Develop scripts and code to integrate with security tools.
  • Interface with analysts to ensure that the tools are meeting requirements.
  • Experience with Linux and Windows platforms required.
  • Understanding of network technologies, work flows, IT reporting, etc.
  • Strong verbal and written communication skills.
  • Works well with the team and clients.

Qualifications

Required Education and Experience:

  • Bachelor’s Degree and 5+ years cybersecurity operation related experience or software analyst/programming related experience, or Master’s Degree and 3+ years related experience.
  • Must obtain the Splunk Core Certified Admin certification within the first 3 months of employment.
  • Must obtain the Azure AZ-900: Microsoft Azure Fundamentals certification within 6 months of employment.
  • Must obtain the AWS Cloud Practitioner certification within 9 months of employment.Availability to work flexible hours and be available for on-call during rotations.
  • Must be a US Citizen. 

Target salary range: $105,001 - $115,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.

Overview

SAIC® is a premier Fortune 500® technology integrator driving our nation's technology transformation. Our robust portfolio of offerings across the defense, space, civilian, and intelligence markets includes secure high-end solutions in engineering, digital, artificial intelligence, and mission solutions. Using our expertise and understanding of existing and emerging technologies, we integrate the best components from our own portfolio and our partner ecosystem to deliver innovative, effective, and efficient solutions that are critical to achieving our customers' missions.

We are more than 26,500 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an Equal Opportunity Employer, fostering a respectful work culture based on diversity, equity, and inclusion that values all contributors. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.1 billion. For more information, visit saic.com.

Share: mail

Similar Jobs

Cyber Operations Specialist

ARLINGTON, VA, United States
Cyber

Cybersecurity Instructional Systems Designer

REMOTE WORK, FL, United States
Cyber

Cloud ISSO Support

REMOTE WORK, FL, United States
Cyber

Cloud ISSO Support

REMOTE WORK, IL, United States
Cyber

Cloud ISSO Support

REMOTE WORK, AL, United States
Cyber

Cloud ISSO Support

REMOTE WORK, VA, United States
Cyber

Cyber Security Engineer

REMOTE WORK, FL, United States
Cyber

Cybersecurity Instructional Systems Designer

REMOTE WORK, TX, United States
Cyber

SOC Engineer

REMOTE WORK, TX, United States
Cyber

SOC Engineer

REMOTE WORK, FL, United States
Cyber

Senior Cyber Engineer

REMOTE WORK, FL, United States
Cyber

Cyber Engineer

REMOTE WORK, FL, United States
Cyber

Cyber Security Engineer

REMOTE WORK, AL, United States
Cyber

Cyber Security Engineer

REMOTE WORK, DC, United States
Cyber

Senior Splunk Engineer

REMOTE WORK, TN, United States
Cyber

Senior Splunk Engineer

REMOTE WORK, VA, United States
Cyber

Cloud Cyber Security Engineer

REMOTE WORK, VA, United States
Cyber

Are you an SAIC Employee?

Please apply through the internal career site here >