Sr. Splunk Engineer
Full Time • Fully Remote - US
Benefits:
- Company parties
- Competitive salary
- Dental insurance
- Flexible schedule
HI
Hope doing good & Well
Position: Sr. Splunk Engineer
Location: 100% REMOTE
Duration: 6 to 9 months
Visa Status: GC-EAD/GC/USC.
Job Overview:
Client Is looking for a network and system administrator with deep Splunk subject matter expertise who can create ad hoc queries to identify security and IP protocols on servers and in application communications. This person should have a solid understanding of Spunk Security framework (Spunk ES and Splunk Phantom Operations) dashboards within an agile environment. These servers and applications are 80% installed on premise and 20% Azure. Consultant must be familiar with both NTLM and Kerberos. Removing NTLM from the client environment is the goal of the project.
Experience :
1.Must have 5 yrs network analyst and SIEM SME evaluating customers’ networks and security methodologies including:
Sniffer or other traffic analysis tools to identify network and security protocols
Expert level use of Splunk platform query to mine data across a 3000+ server mixed 80% Windows and 20% Linux (including RHEL)
Splunk ES and Spunk Phantom
Splunk Enterprise Security experience
Azure and Splunk in Azure experience is a plus
2.Must have previous experience Network protocol analysis
Network protocol analysis
Splunk query language
Identification of IP and security protocols
Solid documentation and reporting skills
Self-starter with excellent time management
3.Must have previous experience in security operations, incident management, or command center environment such including:
Breaking down, Integrating various log and data sources into SIEM
Development of reporting and dashboard that align with the compliance and security goals of the organization
Analyze data gathered and develop correlation of the protocol, server configuration, and identification of the corresponding application.
Establishing and documenting standards, workflows, and processes for the project
The following are security certification are recommended: CISSP, CISM, GSEC, GIAC, GPEN
4.Must be able to communicate progress and result effectively with network, server, and application teams
Thank you
venkatesh@careits.com
Hope doing good & Well
Position: Sr. Splunk Engineer
Location: 100% REMOTE
Duration: 6 to 9 months
Visa Status: GC-EAD/GC/USC.
Job Overview:
Client Is looking for a network and system administrator with deep Splunk subject matter expertise who can create ad hoc queries to identify security and IP protocols on servers and in application communications. This person should have a solid understanding of Spunk Security framework (Spunk ES and Splunk Phantom Operations) dashboards within an agile environment. These servers and applications are 80% installed on premise and 20% Azure. Consultant must be familiar with both NTLM and Kerberos. Removing NTLM from the client environment is the goal of the project.
Experience :
1.Must have 5 yrs network analyst and SIEM SME evaluating customers’ networks and security methodologies including:
Sniffer or other traffic analysis tools to identify network and security protocols
Expert level use of Splunk platform query to mine data across a 3000+ server mixed 80% Windows and 20% Linux (including RHEL)
Splunk ES and Spunk Phantom
Splunk Enterprise Security experience
Azure and Splunk in Azure experience is a plus
2.Must have previous experience Network protocol analysis
Network protocol analysis
Splunk query language
Identification of IP and security protocols
Solid documentation and reporting skills
Self-starter with excellent time management
3.Must have previous experience in security operations, incident management, or command center environment such including:
Breaking down, Integrating various log and data sources into SIEM
Development of reporting and dashboard that align with the compliance and security goals of the organization
Analyze data gathered and develop correlation of the protocol, server configuration, and identification of the corresponding application.
Establishing and documenting standards, workflows, and processes for the project
The following are security certification are recommended: CISSP, CISM, GSEC, GIAC, GPEN
4.Must be able to communicate progress and result effectively with network, server, and application teams
Thank you
venkatesh@careits.com
This is a remote position.
Compensation: $75.00 - $85.00 per hour
Who We Are
CARE ITS is a certified Woman-owned and operated minority company (certified as WMBE). At CARE ITS, we are the World Class IT Professionals, helping clients achieve their goals. Care ITS was established in 2010. Since then we have successfully executed several projects with our expert team of professionals with more than 20 years of experience each. We are globally operated with our Head Quarters in Plainsboro, NJ, with focused specialization in Salesforce, Guidewire and AWS. We provide expert solutions to our customers in various business domains.
(if you already have a resume on Indeed)