Splunk Engineer (Remote)
Vacancy expired!
DescriptionGuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation's top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk. Implementation Engineers at GuidePoint Security are experienced professionals who are autonomous, experienced, self-driven security fanatics. Our Security Implementation Engineers are materially involved in the complete security technologies opportunity lifecycle, from pre-sales through delivery and have the freedom and control over how engagements are scoped and delivered. Our unique position as both a Value-Added Reseller (VAR) AND a professional services organization also requires our Security Engineers to continually expand their knowledge and experience with the latest cutting-edge information security technologies. This helps satisfy our Security Implementation Engineers desire to constantly expand their knowledge and better meet the needs of our clients. Position is remote/virtual; however candidates must be available for travel within the New England region when necessary.Position Requirements:
- Splunk architecture, implementation, and troubleshooting experience
- Proficiency developing log ingestion and aggregation strategies
- Expertise developing security-focused content for Splunk, including creation of complex threat detection logic and operational dashboards
- Familiarity with key security events on common IT platforms
- Deep proficiency in client and server operating systems including Windows, Mac, and Linux
- General networking and security troubleshooting (firewalls, routing, NAT, etc.)
- Scripting and development skills (BASH, Perl, Python or Java) with strong knowledge of regular expressions
- Ability to autonomously prioritize and successfully deliver across a portfolio of projects
- Up to 50% out-of-town travel may be required to clients in New England
- Security Implementation Engineers work from remote/virtual when not visiting client locations
- Splunk Enterprise Security experience
- Splunk Certifications such as Splunk Certified Consultant, Splunk Enterprise Security Implementation, and Splunk Certified Architect
- Experience with platforms such as Ansible, Puppet, Chef, Terraform and SaltStack
- Experience with other Information Security solutions including Symantec DLP, ForeScout, ZScaler, Palo Alto, BlueCoat/Symantec, Check Point, McAfee, Carbon Black, CrowdStrike, Splunk, and Cisco SourceFire
- Experience authoring security runbooks, policy, and best practice documentation
- 3-5 years of security engineering experience in the Information Security industry OR as a
- technical lead for an internal Information Security program
- Educational & Professional Credentials
- Bachelor's degree in a relevant discipline or equivalent professional experience
- 100% employer-paid medical, dental and vision insurance for employee, with generous employer family contributions
- Healthy mobile phone and home internet allowance
- Flexible remote work environment
Vacancy expired!