Join our Talent Network >

Splunk Engineer Sr.

Job ID: 2019839
Location: OAK RIDGE, TN, United States
Date Posted: Dec 23, 2020
Category: Cyber
Subcategory: Cybersecurity Spec
Schedule: Full-time
Shift: Day Job
Travel: Yes, 10 % of the Time
Minimum Clearance Required: None
Clearance Level Must Be Able to Obtain: None
Potential for Remote Work: Yes
Benefits: Click here

Share: mail

Job Description

Description

SAIC has an opening for a Senior Specialist, Splunk Engineer. This position is 100% remote.

This position is responsible for duties around supporting the tools and technologies that are owned and operated by the Enterprise Security Operations Center. The Splunk Engineer will support other organizations within the company delivering solutions for data-driven challenges that enable the company. 

The individual should be knowledgeable on a number of security technologies, have a solid understanding of information security and networking and experience interacting with customers. Will be able to engage on tasks independently, document and communicate work efforts and provide technical support.

The position will be responsible for maintaining and tuning the signatures, interfaces, and technical processes to ensure the tools are operational and meet the requirements of Enterprise Security Operations. 

Job Duties:

  • Install/Configure/Maintain log management/correlation tools and SIEM.
  • Annually audit correlation rules to ensure relevance and efficiency.
  • Work with the ESOC to generate new correlation rules.
  • Create and maintain technical dashboards.
  • Work at the system level to improve performance and make proposals for improvements.
  • Train and mentor members of the ESOC on SIEM capabilities and utilization.
  • Develop appropriate metrics to measure the monitoring program and related process as directed by management.
  • Document procedures for data ingestion.
  • Document and maintain access controls to ensure compliance and governance of data access.
  • Work with Business line to ensure that applications/dashboards meet business needs.
  • Creating and implementing configuration standards, policies, and/or procedures for improved operations and management.
  • Resolving incidents and/or other issues, while integrating with change management processes.
  • Develop scripts and code to integrate with security tools.
  • Interface with analysts to ensure that the tools are meeting requirements.
  • Experience with Linux and Windows platforms required.
  • Understanding of network technologies, work flows, IT reporting, etc.
  • Strong verbal and written communication skills.
  • Works well with the team and clients.

Qualifications

Required Experience:

  • Bachelor’s Degree and 5+ years cybersecurity operation related experience or software analyst/programming related experience, or Master’s Degree and 3+ years related experience.
  • Must obtain the Splunk Core Certified Admin certification within the first 6 months of employment.




Overview

SAIC is a premier technology integrator solving our nation's modernization and readiness challenges. Our offerings across defense, space, civilian, and intelligence markets include high-end solutions in engineering, IT, and mission outcomes. We integrate the best components from our portfolio with our partner's ecosystem to deliver innovative and effective solutions. We are 25,500 strong; driven by mission, united by purpose, and inspired by opportunities. Headquartered in Reston, VA, SAIC has annual revenues of nearly $7.1 billion. For information, visit saic.com or Working at SAIC for benefits details. SAIC is an Equal Opportunity Employer empowering people no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status. We strive to create a diverse, inclusive and respectful work culture that values all.

Share: mail

Similar Jobs

Cyber Ops Center Support II

OAK RIDGE, TN, United States
Cyber

NOC Technician (All Shifts)

OAK RIDGE, TN, United States
Cyber

Splunk Engineer Sr.

OAK RIDGE, TN, United States
Cyber