Remote Splunk Enterprise Security (ES) Engineer - Mid Level (R-00012)

Posted

This job is closed

This job post is closed and the position is probably filled. Please do not apply.  Automatically closed by a robot after apply link was detected as broken.

Description:

  • True Zero Technologies is seeking experienced Splunk ES-certified engineers and consultants to join their Data Analytics practice.
  • The position is 100% remote and focuses on the design, implementation, and administration of Splunk instances for federal government customers.
  • Responsibilities include data on-boarding, content development, reporting, and visualizations.
  • Candidates must have significant experience in Splunk ES design, implementation, and administration.
  • A security clearance is required or candidates must be willing to obtain one.
  • Preferred candidates will have experience supporting federal customers and working with Security Operation Center (SOC) teams.
  • Additional skills in AWS cloud, Cribl, and Splunk Indexer Clustering are advantageous.
  • The role offers access to a comprehensive knowledge base and technical support from the True Zero community.
  • Collaboration and growth are encouraged through information sharing and knowledge workshops.

Requirements:

  • A minimum of 5-7 years of relevant market experience is required.
  • At least 1-2 years of specific experience with Splunk is necessary.
  • Candidates must possess Splunk Enterprise Security Implementation/Admin Certifications or Accreditation.
  • A Splunk Architect Certification is also required.
  • Experience in designing and implementing distributed Splunk installations, including all server roles, is essential.
  • Candidates should have advanced configuration experience with Splunk, including Indexer Clustering and Search Head Clustering.
  • Experience in maintaining and administering enterprise Splunk implementations is required.
  • Proficiency in developing custom Splunk content, including searches, reports, and dashboards, is necessary.
  • Candidates must be skilled in data on-boarding activities and familiar with Splunk's Common Information Model (CIM).
  • Experience in configuring indexes, index routing, and retention policies is required.
  • Familiarity with Linux and Windows environments, including storage subsystems and file permission settings, is essential.
  • Excellent written and oral communication skills are necessary for managing customer expectations and engagement scope.

Benefits:

  • The position offers a competitive salary, paid twice per month.
  • Employees receive best-in-class medical coverage, with 100% of medical premiums covered by True Zero.
  • There are company-wide new business incentive programs and contribution incentives for white papers, blog posts, and internal webinars.
  • Employees start with 3 weeks of PTO and receive 11 paid holidays annually.
  • A 401k program is available with a 100% company match on the first 4%.
  • Monthly reimbursement for cell phone and home internet costs is provided.
  • Paternity and maternity leave are offered.
  • True Zero invests in training and certifications to help employees broaden and deepen their technical skills.
About the job
Posted on
Job type
Full-time
Salary
-
Location requirements
United States - Remote North America - Remote
Position
Cybersecurity Engineer
Experience level
Mid-level
Technology stack
AWS Azure Python Perl R Ansible
TZ
True Zero Technologies's company logo
True Zero Technologies
View company profile Visit truezerotech.com
Leave a feedback