SIEM Engineer
3 weeks ago
Overview
SIEM (Security Information & Event Management) Engineer / Splunk Certified Admin
woodcons.com
The selected candidate will be responsible for configuring the collection, parsing, correlation, and visualization of events for a critical operational system. She/he will demonstrate strong skills in system administration, log management, event correlation, and threat detection and will support building and maintaining a system that analyzes collected data and derives facts, inferences, and projections to determine if the systems being monitored are operating normally. The individual will work on a team responsible for configuring the systems which support analysts and end‐users. The successful candidate will support the collection and extraction of data used to refine existing and new reports, analytics, and dashboards, and will be involved with the drafting and creation of reports and dashboards based on end‐user requirements. She/he will also support the integration of resources across teams to better define the audit data being collected to eliminate false positives and false negatives from the data.
Security Clearance Requirements:
This position requires candidates to be U.S. Citizens and possess a TS/SCI Security Clearance with an appropriate Polygraph.
Qualifications
Basic / Required Qualifications
- Must have Splunk Enterprise Certified Admin Certificate or higher.
- At least 8 years of related experience.
- At least 2 years of experience with one or more of the following: StealthWatch, TripWire, Zenoss, ArcSight, Splunk.
- Experience in design, implementation, and support of Splunk core components, including: indexers, forwarders, search heads, and cluster managers.
- Experience with configuration and administration of Splunk ingestion and forwarding for new and existing applications and data.
- Experience with troubleshooting Splunk dataflow issues between the various Splunk core components.
- Experience configuring and deploying data collection for a variety of operating systems and networking platforms.
- Experience creating Dashboards and Analytics within SIEM tools.
- Experience working with monitoring systems supporting auditing, incident response, and system health.
- Understanding of networking components and devices, ports, protocols, and basic networking troubleshooting steps.
- The ability to troubleshoot issues with log feeds, search time, and field extractions.
- The ability to troubleshoot problems related to data solutions.
Preferred Qualifications
- Bachelor's Degree in Computer Science, Engineering, Information Assurance, or a related discipline.
- Network Security Operations Center (SOC) experience.
- Experience and talent in data visualization.
- Experience creating workflows for Incident Response within a SIEM Tool.
- Security+ Certification.
- GIAC Certified Incident Handler Certification.
- GIAC Cyber Threat Intelligence Certification.
- Cybersecurity certifications.
- Formal SIEM training.
- Experience working on an Agile team/program.
WOOD is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
-
SIEM Engineer
5 days ago
Annapolis Junction, Maryland, United States WOOD Consulting Services Full timeOverview:SIEM (Security Information & Event Management) Engineer / Splunk Certified Admin(url removed)The selected candidate will be responsible for configuring the collection, parsing, correlation, and visualization of events for a critical operational system. She/he will demonstrate strong skills in system administration, log management, event correlation,...
-
SIEM Engineer
4 weeks ago
Annapolis Junction, United States Wood Consulting Full timeOverview SIEM (Security Information & Event Management) Engineer / Splunk Certified Admin woodcons.com The selected candidate will be responsible for configuring the collection, parsing, correlation, and visualization of events for a critical operational system. She/he will demonstrate strong skills in system administration, log management, event...
-
SIEM Engineer
4 weeks ago
Annapolis Junction, United States Wood Consulting Full timeOverview: SIEM (Security Information & Event Management) Engineer / Splunk Certified Admin woodcons.com The selected candidate will be responsible for configuring the collection, parsing, correlation, and visualization of events for a critical operational system. She/he will demonstrate strong skills in system administration, log management, event...
-
SIEM Engineer
3 weeks ago
Annapolis Junction, United States Wood Consulting Full timeOverview: SIEM (Security Information & Event Management) Engineer / Splunk Certified Admin woodcons.com The selected candidate will be responsible for configuring the collection, parsing, correlation, and visualization of events for a critical operational system. She/he will demonstrate strong skills in system administration, log management, event...
-
SIEM Engineer
3 weeks ago
Annapolis Junction, United States Wood Consulting Full timeOverview SIEM (Security Information & Event Management) Engineer / Splunk Certified Admin woodcons.com The selected candidate will be responsible for configuring the collection, parsing, correlation, and visualization of events for a critical operational system. She/he will demonstrate strong skills in system administration, log management, event...
-
SIEM Engineer
1 week ago
Annapolis Junction, United States Wood Consulting Full timeOverview SIEM (Security Information & Event Management) Engineer / Splunk Certified Admin woodcons.com The selected candidate will be responsible for configuring the collection, parsing, correlation, and visualization of events for a critical operational system. She/he will demonstrate strong skills in system administration, log management, event...
-
Microsoft Sentinel SIEM Engineer
3 days ago
Annapolis, United States Tri-Force Consulting Services, Inc. Full timeJob DescriptionJob DescriptionTitle: Microsoft Sentinel SIEM Engineer Duration: 12 monthsClient: Maryland Judiciary, Administrative Office of the CourtsLocation: Annapolis, MD 21401Note: This is a 100% Remote position. “The applicant is the center of our universe.”Job Description:The SIEM Engineer is responsible for designing, implementing, and managing...
-
Annapolis Junction, United States Navstar Full timeWould you like to perform rewarding work while contributing to the success of an established, growing company? Navstar is an award-winning organization that has a proven track record of successfully providing IT services and solutions both as a prime and sub-contractor on mission focused IT programs. Our employees are integral players in support of...
-
SIEM Engineer/Splunk Certified Admin
1 month ago
Annapolis, United States SUNAYU Full timeLocation: Annapolis Jct, MD Category: SIEM (Security Information and Event Management) Engineer / Splunk Certified Admin Travel Required: No Remote Type: No Clearance: Top Secret/SCI w/ FS Polygraph (last poly must be within the past 7 years) Job Summary / Primary Responsibilities The selected candidate will be responsible for configuring the collection,...
-
SIEM Engineer/Splunk Certified Admin
3 weeks ago
Annapolis, United States SUNAYU Full timeLocation: Annapolis Jct, MD Category: SIEM (Security Information and Event Management) Engineer / Splunk Certified Admin Travel Required: No Remote Type: No Clearance: Top Secret/SCI w/ FS Polygraph (last poly must be within the past 7 years) Job Summary / Primary Responsibilities The selected candidate will be responsible for configuring the collection,...
-
SIEM Team
3 weeks ago
Annapolis, United States General Dynamics Information Technology Full timeSIEM Team – Splunk Systems Engineer Deliver simple solutions to complex problems as a SIEM Team – Splunk Systems Engineer at GDIT. Here, you’ll tailor cutting-edge solutions to the unique requirements of our clients. With a career in application development, you’ll make the end user’s experience your priority and we’ll make your career growth...
-
Annapolis Junction, Maryland, United States BAE Systems Full timeJob Description The selected candidate will join a high performing agile team that uses the Scaled Agile Framework (SAFe) methodology to support a nationally significant and fast-paced program. Program execution follows DEVOPS best practices and employs robust development, test and production environments. Test Driven Development (TDD) and test automation...
-
Annapolis Junction, Maryland, United States BAE Systems Full timeJob Description The selected candidate will join a high performing agile team that uses the Scaled Agile Framework (SAFe) methodology to support a nationally significant and fast-paced program. Program execution follows DEVOPS best practices and employs robust development, test and production environments. Test Driven Development (TDD) and test automation...
-
Annapolis, United States Navstar Full timeWould you like to perform rewarding work while contributing to the success of an established, growing company? Navstar is an award-winning organization that has a proven track record of successfully providing IT services and solutions both as a prime and sub-contractor on mission focused IT programs. Our employees are integral players in support of...
-
Annapolis, Maryland, United States Navstar Full timeWould you like to perform rewarding work while contributing to the success of an established, growing company? Navstar is an award-winning organization that has a proven track record of successfully providing IT services and solutions both as a prime and sub-contractor on mission focused IT programs. Our employees are integral players in support of...
-
Annapolis, United States Navstar Full timeWould you like to perform rewarding work while contributing to the success of an established, growing company? Navstar is an award-winning organization that has a proven track record of successfully providing IT services and solutions both as a prime and sub-contractor on mission focused IT programs. Our employees are integral players in support of...
-
Annapolis, United States Navstar Full timeWould you like to perform rewarding work while contributing to the success of an established, growing company? Navstar is an award-winning organization that has a proven track record of successfully providing IT services and solutions both as a prime and sub-contractor on mission focused IT programs. Our employees are integral players in support of...
-
Annapolis, United States Navstar Full timeWould you like to perform rewarding work while contributing to the success of an established, growing company? Navstar is an award-winning organization that has a proven track record of successfully providing IT services and solutions both as a prime and sub-contractor on mission focused IT programs. Our employees are integral players in support of...
-
Annapolis Junction, United States Momentum Engineering Full timeRequired Qualification Must have Splunk Enterprise Certified Admin Certificate or higher. The selected candidate will be responsible for configuring the collection, parsing, correlation, and visualization of events for a critical operational system. She/he will demonstrate strong skills in system administration, log management, event correlation, and threat...
-
Cyber Security Engineer
4 days ago
Annapolis Junction, United States Defense Technical Recruiting, LLC Full timeCompany Overview: Defense Technical Recruiting provides a recruiting service for a leading Partner in the Defense Industry that specializes in delivering cutting-edge technology solutions to support various defense programs. Our team is dedicated to excellence, innovation, and ensuring the success of our clients' missions.Position Overview: We are seeking a...
