Sr. Splunk Engineer (Remote)

With Kavaliro in Atlanta GA US

More jobs from Kavaliro

Posted on March 13, 2019

About this job

Job type: Full-time
Role: System Administrator


linux, sysadmin, amazon-web-services

Job description

Sr. Splunk Engineer

Location: Remote

The Sr. Security Engineer / Splunk Engineers primary duty is to provide expert security engineering support to our client’s virtual security operations service offerings (vSOC).

Splunk Engineers are tasked with the design, development, implementation, configuration, operation, management, testing, tuning, and optimization of all security systems and resources. Candidates must be proficient in managing a multitude of virtual resources in a fast-paced environment and excel in leveraging/optimizing Splunk within a variety of environments.  

Role and Responsibilities:

  • Provide subject matter expertise in Information security and Systems Administration

  • Design, develop, deploy, manage, and maintain Amazon Web Services systems and solutions

  • Deploy, configure, manage, and maintain Linux systems from a variety of distributions

  • Deploy, setup, configure, manage, and maintain Splunk deployments to include clustering and high availability scenarios

  • Performance monitoring of all deployed systems and solutions

  • Securing all deployed systems and solutions to at least industry best practices

  • Contribute to the integration of systems using APIs

  • Create REGEX to parse log files as needed

  • Provide functional solutions to complex technical problems

  • Interface with customers to resolve issues, provide additional information, and answer questions

  • Keep up-to-date with information security news, techniques, and trends

  • Manage multiple priorities simultaneously while managing expectations and project milestones

  • Achieve expert proficiency with Splunk as an engineer and become proficient with third-party threat intelligence tools as required

Position Requirements:

  • Document network architectures and topologies

  • Excellent customer facing communication skills

  • Strong proficiency scripting as needed in Python

  • Excellent ability to troubleshoot Linux and Windows systems as needed and analyze/tailor SysLogs

  • Expert experience with Splunk (and other SIEM)

  • Experience with Linux Operating Systems (CentOS, RedHat, Ubuntu)

  • Experience with Amazon Web Services (AWS) & Microsoft Azure

  • Experience with DevOps software (Ansible, Chef, Puppet, etc)

  • Experience with Incident Management (Desired)

  • Experience writing and communicating with customers (Desired)

  • Degree in Information Security or Information Technology (Desired)

Please refrain from applying unless legally authorized to work in the US / Corp-to-Corp Unavailable / Sponsorship Unavailable

Apply here