Splunk Engineer - Consultant Certified / ES Accreditation Required (R-00064) at True Zero Technologies | Torre
Splunk Engineer - Consultant Certified / ES Accreditation Required (R-00064)
Report
warning

Heads-up

The job you’re trying to post already exists in Torre:

Splunk Engineer - Consultant Certified / ES Accreditation Required (R-00064)

You'll fortify national cybersecurity with cutting-edge Zero Trust architectures.
Emma highlights
This highlight was written by Emma’s AI. Ask Emma to edit it.
Full-time

Legal agreement: Employment

Provide your expected compensation while applying
location_on
Herndon, VA 20170, USA
Match
skeleton-gauges
You have opted out of job matches in .
To undo this, go to the 'Skills and Interests' section of your preferences.
Review preferences
Posted 8 months ago

Requirements and responsibilities


About the CompanyTrue Zero Technologies, a veteran-owned small business, was founded on the principle that the purposeful enablement of people and technology in an organization directly ties to the quality of its outcomes. True Zero recognizes that said outcomes begin and end with our people, and that is what we have built, a community of like-minded, driven, and passionate individuals and innovators who are aligned in a common goal of delivering top tier services to our customers. In 2023, True Zero was recognized as a Best Places to Work in two categories Prosperous and Thriving (5MM – 50MM in gross revenue) and in 2022, was recognized as one of Inc. Magazine Top 5000 Fastest Growing Companies.Job DescriptionThe candidate will be part of a team of Splunk Engineers maintaining various clients Splunk instances with a heavy emphasis on data on-boarding, content development, reporting, and visualizations. All candidates must possess prior Splunk engineering and administration experience, meet the necessary certification prerequisites, and work well in a team environment. Candidates with backgrounds supporting federal customers is a plus.As a TZT consultant, the candidate will receive access to the full knowledge base which is driven by the True Zero community as well as the technical backing of the entire PS team. True Zero encourages collaboration and growth through information sharing and knowledge workshops. The candidate will also have access to our internal Slack channel to stay connected with the team as well as the necessary tools to train, demo, test and grow their professional skills.QualificationsUS Background Check RequiredSplunk Consultant CertificationHeavy Splunk ES ExperienceExperience ingesting logs into Splunk via Cribl is requiredExperience with RBADevelop and Implement Actionable Alerts and Workflow for Splunk as a SIEM (Security Information & Event Management) toolDevelop and Implement Apps & Knowledge Objects (KO) like Dashboard, Reports, Data ModelsWork with the Splunk Architect/Admin to promote private KO to Global KOAssist, and/or train CISO Splunk Engineering team on Data LifecycleSupport Assist, train, and/or host workshops CISO teams and analysts on Searching and Content DevelopmentDevelop and implement automation to improve efficiency of CISO workflows using Splunk Assist in development of advanced security use cases in SplunkDevelop risk rules and risk incident rules to correlate and alert to significant cyber eventsDevelop custom dashboards specific to RBA (Risk Based Alerting) to highlight risk detail, health analysis and risk suppressionConfigure incident response and remediation workflows for ES around notable events (RBA or otherwise alerted)Develop custom machine learning (ML) models to support anomaly-detection based augmentation of alertingWork with numerous stakeholders to implement and maintain event logging from various operating systems, applications, identity providers, network infrastructure, and cloud service providers. Understanding of network protocols, operating systems, applications, and device event telemetryBenefitsWe’re actively searching for talented security and technology practitioners who are ready to experience the True Zero difference. As a True Zero team member, you'll enjoy:Competitive salary, paid twice per monthBest in class medical coverage100% of medical premiums covered by True ZeroCompany wide new business incentive programsContribution Incentives (i.e. white papers, blog posts, internal webinars, etc.)3 weeks of PTO starting + 11 Paid Holidays Annually401k Program with 100% company match on the first 4%Monthly reimbursement of Cell Phone and Home Internet costsPaternity/Maternity LeaveInvestment in training and certifications to broaden and deepen your technical skillsAI DisclosureWe may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
Optionally, you can add more information later (benefits, pre-screening questions, etc.)
check_circle

Payment confirmed

A member of the Torre team will contact you shortly

In the meantime, continue adding information to your job opening.