Cyber Security Engineer (Splunk)- Secret

Job Description

-Responsible for analyzing the security of hardware (SoC, MCU, etc.) and low-level operating system components of consumer devices.

-Responsible for providing systems security support for the protection of information system assets.

-Implementation of technology that supports network defense, vulnerability management, and incident response based on our client's unique mission needs.

-Assess and review risks and work with product engineers to create mitigations.

-Develop and execute policies, standards, and procedures.

-Develop and deliver security training, promote awareness, and educate product engineers on technology.

-Research on the latest standard methodologies, trends, threats and vulnerabilities, and technology frameworks

Splunk subject matter expert, responsible for engineering and maintenance of multiple clustered instances

Implement and maintain security stack components, such as IDS/IPS, firewalls, SIEM, and host-based security systems.

Mature the existing Splunk instances to support robust incident detection and insider threat programs.

-Build system configuration baselines that leverage the Security Content Automation Protocol (SCAP) for both Windows and UNIX/LINUX operating systems.

Engineer event log correlation solutions to support effective customer response to security incidents.

-Conduct incident response actions based on detected events and incidents.

75/hr and $155,000

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to ~~~ .

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: ~~~/ .

Skills and Requirements

-4-6 years relevant experience

-Experience building and maintaining Splunk instances in a DoD specific environment.

-Experience using Splunk front end and back end to correlate events and identify possible security events and incidents; must then be able to track down root cause of these events and work with CIRT team to conduct incident response actions.

-Must possess a Secret and be willing to be upgraded to SCI (Prefer TS to start)

-Proficiency with UNIX/LINUX

-Security Plus CE

-Willing to go on site 4 days a week with 1 remote telework day null

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to ~~~.