Experience Inc. Jobs

Home View All Jobs (2,211,333)

Job Information

Randstad US splunk architect/ engineer - secret clearance in atlanta, Georgia

splunk architect/ engineer - secret clearance.

  • atlanta , georgia

  • posted august 11, 2024

job details

summary

  • $62 - $82 per hour

  • contract

  • bachelor degree

  • category computer and mathematical occupations

  • reference1061564

job details

job summary:

As part of the Information and Cybersecurity Department (ICD), the Information Security Operations Center (ISOC) Splunk Architect/Engineer will play an integral role in the administration, configuration, and technical enrichment of the organization's Splunk instance. The ideal candidate for this role is a cybersecurity focused Splunk subject matter expert who can architect and engineer solutions in Splunk, participate in incident response and forensic investigations using Splunk as needed. The ISOC Splunk Architect/Engineer will work closely with the ISOC analysts and Lab IT Directors to create tailored alerts and onboard necessary data. This role reports to the ISOC Manager. This position has been designated as hybrid and work will be performed in the Atlanta, GA metropolitan area within Eastern Time (ET) Zone. This position is starting off as a contract role with the potential for permanent hire. Pay is commensurate with level of experience.

location: Atlanta, Georgia

job type: Contract

salary: $62 - 82 per hour

work hours: 9am to 5pm

education: Bachelors

responsibilities:

Job Purpose

  • Requires extensive knowledge of computer operating systems, networks, log analysis and security tools.

  • Applies engineering principles to cybersecurity challenges.

  • Necessary skill areas: fundamentals of computer science, information analysis, testing software, log analysis, event correlation, anomaly detection, and behavioral analysis.

  • Defining cybersecurity controls for different systems and networks.

  • Creates novel cyber security technology components to ensure that critical systems/information are resilient to cyber exploits and attacks.

  • Performs attendant vulnerability assessments, analysis, and software engineering and design.

  • Ensures cybersecurity needs established and maintained for operations, security requirements definition, security risk assessment, information systems analysis, information systems design, information systems hardening, configuration and maintenance of other security boundary devices (IDS/IPS, Firewalls, perimeter routing) and vulnerability scanning, incident response, disaster recovery, and operations continuity planning and provides analytical support for security policy development and analysis. Engineers, implements, and maintains Information Technology Infrastructure and associated cybersecurity controls.

  • Areas of responsibility include but are not limited to information security operations, cyber risk & intelligence, data loss & fraud protection, regulatory compliance, policy management and audits & assessment.

Key Responsibilities

  • Assist with information technology risk assessments for systems, software, or configurations.

  • Helps with the validation security control configuration on systems, ensure all systems are configured to necessary controls, such as NIST, DFARS 252.204-7012, CMMC, and other similar requirements.

  • Actively collaborates with customers and external teams, derives tasks from detailed requirements.

  • Design and interpret security requirements and practices to meet enterprise accreditation goals.

  • Provide leadership to lower-level cybersecurity and IT professionals across the enterprise.

  • Approve modification to critical information systems and directs implementation of configuration changes.

Additional Responsibilities

  • Administer the Splunk application infrastructure for the ICD/organization.

  • Provide support for design, architecture, development, deployment, installation, configuration, integration, operation, and maintenance of Splunk resources.

  • Create standardized documentation for Splunk deployments.

  • Deploy and maintain dashboards, reports, alerts, technology apps/add-ons, and Common Information Model (CIM) compliance.

  • Support the expansion of the current Splunk environment to include Splunk Enterprise Security (ES) and Security Orchestration, Automation & Response (SOAR).

  • Support system and data integration within the security tool ecosystem within ICD

  • On-board additional data sources with the assistance of stakeholders across the institution.

  • Tune new and existing data streams, alerts, reports, and data models.

  • Identify and remediate gaps in existing Splunk security posture and deployment.

  • Mentor junior analysts in Splunk use and best practice.

Required Minimum Qualifications

  • Ability to obtain a secret security clearance.

  • Experience in implementing Splunk applications, tools, and add-ons, including ES and SOAR.

  • Solid technical understanding of cybersecurity concepts, standards, guidelines, and principles.

  • Excellent written and oral communication skills.

  • One or more intermediate cybersecurity certifications such as: Certified Ethical Hacker (CEH), PenTest+, GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Enterprise Defender (GCED), GIAC Certified Forensic Analyst (GCFA), GIAC Certified Incident Handler (GCIH) or equivalent.

  • One or more baseline specialized certifications such as: Splunk Cloud Certified Admin, Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect.

Preferred Qualifications

  • Active Secret Clearance.

  • 6 years of experience in Splunk/SIEM administration.

  • Master's degree.

  • One or more advanced cybersecurity certifications such as: Offensive Security Certified Professional (OSCP), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or equivalent.

  • One or more intermediate specialized certifications such as: Splunk Enterprise Security Certified Admin, Splunk SOAR Certified Automation Developer, Splunk Certified Cybersecurity Defense Analyst.

qualifications:

  • Experience level: Experienced

  • Minimum 9 years of experience

  • Education: Bachelors (required)

skills:

  • SplunkEqual Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact HRsupport@randstadusa.com.Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad Digital offers a comprehensive benefits package, including health, an incentive and recognition program, and 401K contribution (all benefits are based on eligibility).This posting is open for thirty (30) days.
DirectEmployers