Contact Us Login Home
IntellecTechs

Founded by Veterans in Hampton Roads

Company Name:
C2 Essentials Inc
Approximate Salary:
Not Specified
Location:
Morrisville, North Carolina
Country:
United States
Industry:
Information Technology
Position type:
Full Time
Experience level:
2 - 5 years
Education level:
Bachelor's Degree
Contact:
Renuka Nair
Email:
renukan@c2essentials.com
ID
12108
Phone:
703-444-0096

Splunk Service Engineer (Integration & Ingestion)

 

Our client is a recognized Information Technology solutions provider. Founded in 1998 and based in Reston, Virginia, it is a CMMI Level 3 Certified company with an established reputation for excellence and on-time delivery with a consistently high customer satisfaction rating from its Federal Government and private consulting contracts. They are currently seeking a full-time Splunk Service Engineer (Integration & Ingestion) in Morrisville, NC. JOB DESCRIPTION • Seeking a professional and experienced SIEM Engineer that is specialized in Splunk Integration & Ingestion to join our on-site client-facing team. The successful candidate will provide consulting, training and hands-on-keyboard services for Splunk data integration, content development and user enablement for the Corporate Information Security Office (CISO) organization.• Tune and configure Splunk App for Enterprise Security (ES)• Work with CISO Operations and Engineering to gather requirements for building content and use cases in Splunk.• Assist in development of advanced security use cases in Splunk• Handle User Enablement to include assist and/or train CISO Splunk team on data lifecycle support, assist and/or train CISO team and analysts on Content Development, develop and implement automation and efficiencies with Splunk and CISO workflows, provide analyst training and workshops on using Splunk, and introduce new content, alerts and data sources to CISO Analysts.• Develop Data Lifecycles1. Data Discovery with Application Owners/End Users to determine data source structure and onboarding design.2. Data Parsing (Dev) at Index Time (Host, Source, Sourcetype, Line breaks, Timestamps)3. Data Normalization (Dev) including CIM compliance. Preparing data to be ready for search, data models and content development4. Data Validation (Dev) work with Application owner and end user to validate data normalization5. Data Onboarding (Prod) work with Splunk Admins to onboard Data from Dev to Prod REQUIRED SKILLS AND EXPERIENCE • Extensive experience (5+ years) in information security operations and/or related IT operational functions.• Must possess a minimum of a Bachelor’s Degree in Computer Science, Information Technology or Information Security.• Certification in one or more of; CompTIA Net+, CompTIA A+, or CompTIA Security +.• Demonstrable expert knowledge of Splunk Best Practices, Operation Plans, Workflows and Processes.• Overall experience with Security Operation tools inclusive of products from RedSeal, Tenable, FireEye, Looking Glass, Intel, Endgame, StealthWatch, RSA, Tanium. REQUIRED EDUCATION • Bachelors Degree REQUIRED CLEARANCE • US Citizens and eligible to obtain a USPS Public Trust clearance Please Apply Online – https://careers-niksoft.icims.com/jobs/1274/splunk-service-engineer-%28integration-%26-ingestion%29/job EOE M/F/Disability/Vet Our Client will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.

 

 

Options