Senior Engineer, Software
T-Mobile
AEMAngularAWSCloudGoogle Cloud PlatformJavaJavaScriptNode.jsSpringSpring BootSpringBootTypeScript
Senior Splunk Engineer
Qmulos
full-time
Posted on:
Location Type: Hybrid
Location: Chantilly • Virginia • 🇺🇸 United States
Visit company websiteSalary
💰 $120,000 - $160,000 per year
Job Level
Senior
Tech Stack
AnsibleAWSChefCloudDockerLinuxOpenStackPuppetPythonSaltStackSplunkSQLVMware
About the role
- Enable customer success by providing a well-rounded consulting experience from project kickoff through completion.
- Operate and maintain the Splunk log management infrastructure and leverage knowledge on a number of security technologies, information security, and networking.
- Comprehensive experience in interacting with clients, providing security focused log collection solutions using Splunk.
- Develop security focused content for complex client Splunk deployments, with focus on creation of complex detection, alerting logic and log source on-boarding using custom methods or Splunk common information model (CIM).
- Develop advanced reports to meet the requirements of key stakeholders and scalable security management tools and processes.
- Conduct research in areas, including security principles, host and network-based security technologies, machine learning algorithms, and mitigation methods.
- Automate Splunk deployments, integrations, testing of enterprise systems and services.
- Create and optimize correlation searches as an (SPL) expert.
- Establish regular, effective, comprehensive reporting for services engagements in accordance with customer requirements.
- Strong organizational and time management skills.
- Willingness to travel if required.
- Experience configuring a Splunk Premium Application (ES, ITSI, UBA, SOAR, Cloud)
- A successful track record of supporting multiple long term engagements, and seeing significant tasks through from beginning to end.
- Received positive commendation from customers for a job well done.
- One or more Splunk Premium App Accreditations (ES, ITSI, UBA, SOAR, Cloud)
- Qmulos Products Accreditations (Q-Compliance and Q-Audit)
Requirements
- U.S. Citizenship or Permanent Resident status REQUIRED
- 5+ years of technical consulting or big data analytics experience
- 2+ years of hands-on experience with Splunk, network security and system security, supporting security information and event management tools (SIEMs)
- 2+ years of experience with rule and advanced logic creation within Splunk
- Knowledge of Splunk and JIRA best practices
- Experience with Linux and Windows operating systems
- Experience with using scripting languages to automate tasks and manipulate data
- Experience with working in a large enterprise environment
- Experience with integrating solutions in a multi-vendor environment, including SaaS environments
- Experience with regular expressions
- Knowledge of enterprise system and network logging, with a focus on security event logging
- Knowledge of Splunk common information model (CIM)
- Ability to work independently in fast-paced, structured and unstructured environments
- Splunk User, Power User, Administrator Certifications (Ability to achieve Splunk Core Certified Consultant)
- 2+ years of experience in security operations
- Experience with enterprise-scale operations and maintenance environments
- Experience with command-line interface
- Experience with Splunk API
- Experience with Python
- Experience with various security tools, including Wireshark, Nessus, Nmap, Burp, Proxy, or Snort (preferred)
- Experience with SPL, SQL, and other related search languages
- Knowledge of networking protocols
- Ability to be a Splunk language (SPL) expert
- Familiarity with concepts and implementation of Syslogd
- Knowledge of virtualization and container tools, including VMware, Parallels, VirtualBox, OpenStack, and Docker
- Knowledge of configuration management tools, including Ansible, Puppet, Chef, and SaltStack
- BA or BS degree in CS, IT, Engineering, or a related field; or equivalent professional experience
- Advanced degree is a plus.
- Industry recognized security certifications (security, networking, etc)- preferred
- Working knowledge of Splunk Cloud solution
- Working knowledge of AWS
- Active or ability to keep Top Secret Security Clearance
Benefits
- health insurance coverage (medical, dental, and vision)
- short-term and long-term disability insurance
- life insurance
- 401(k) retirement benefits
- company paid holidays
- paid time off (PTO)
- phone allowances
- tuition reimbursement
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
SplunkSPLPythonSQLLinuxWindowsnetwork securitysystem securitymachine learning algorithmsregular expressions
Soft skills
organizational skillstime managementindependent workclient interactionconsulting experienceproblem-solvingcommunication skillsability to work in fast-paced environmentsattention to detailadaptability
Certifications
Splunk User CertificationSplunk Power User CertificationSplunk Administrator CertificationSplunk Core Certified ConsultantQmulos Products AccreditationsTop Secret Security Clearanceindustry recognized security certifications
