Plus
Включить Plus
Назад
Company hidden
16 часов назад

SIEM Engineer/Analyst (Splunk)

Формат работы
hybrid
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

SIEM Engineer/Analyst (Splunk): Implementing and managing enterprise security information and event management systems with an accent on log validation, correlation rule development, and anomaly detection. Focus on deploying Splunk ESM, SOAR, and UBA modules to enhance threat detection and maintain strict compliance alignment.

Location: Hybrid (3 days onsite) — Must be based in Alexandria, Virginia or Seaside, California

Company

A veteran-owned small business dedicated to delivering top-tier cybersecurity services through a people-first approach.

What you will do

  • Validate log sources and ensure compliance with STIG and organizational requirements.
  • Analyze log data to identify anomalies, misconfigurations, or threats and escalate to incident response teams.
  • Integrate third-party data feeds into the Splunk SIEM platform and maintain connectors and collectors.
  • Develop and tune correlation rules, filters, and alerts to support threat detection.
  • Deploy and upgrade Splunk components, including ESM, SOAR, and UBA modules.
  • Oversee log retention, rotation, and archival processes to ensure policy compliance.

Requirements

  • Active Secret security clearance.
  • Active DoD 8570 IAT Level III certification (e.g., CISSP, Security+ CE).
  • 8+ years in cybersecurity operations with specific expertise in Splunk, UBA, and SOAR.
  • 5+ years experience with enterprise SIEM solutions, including ingestion, parsing, and dashboard development.
  • Splunk Core Certified Power User certification (must have).
  • Ability to work hybrid (3 days per week onsite) in Alexandria, VA or Seaside, CA.

Nice to have

  • Splunk Enterprise Security Certified Admin.
  • Splunk Certified Cybersecurity Defense Analyst.
  • Splunk Certified Architect.

Culture & Benefits

  • 100% of medical premiums covered by the company.
  • 401k program with 100% company match on the first 4%.
  • 3 weeks of PTO starting, plus 11 paid holidays annually.
  • Monthly reimbursement for cell phone and home internet costs.
  • Investment in professional training and certifications.
  • New business incentive programs and contribution incentives for white papers or blogs.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →