Splunk Consultant
3 weeks ago
*Description:*
Our client is looking for a motivated engineer to become a core member of the Cyber Enablement team, specifically in Enterprise Security, guiding the enterprise organization to improve the practice of security observability.
As a SIEM Engineer focused on Splunk ES for Cyber Enablement, you will work closely with the Tech Security and Compliance team to establish and build upon best practices with the security platforms through event & logging management to provide total visibility into our systems. This role requires someone who can help lululemon to get most value from our investment, implement and refine governance practices, as well as handling hands on admin tasks support across a disparate organization.
As a successful candidate for this role, you will support our lead engineers to administer our tools, enable our end users, be a custodian for best practices and standards, and work with vendor TAMs, to resolve issues and learn about new capabilities and opportunities.
A day in the life:
- Support users with Getting Data In (GDI) including data classification and data transfer to the logging aggregation tool(s) that fit the use case for security and SIEM or observability
- Maintain and install Splunk Technical Addons needed for GDI
- Log pipeline implementation and maintenance, including data ETL or minimization, obfuscation, log to metrics, etc
- Enforce best practices and strategies for teams to integrate with Tech Security and Compliance guidelines
- Tool Governance and Best Practices documentation
- Understand our end users needs to ensure our platforms meet their needs
- Collaborate with cross-functional teams to troubleshoot and resolve monitoring related issues
- Work with Enterprise Engineering platform administration to support Observability platform health
Qualifications:
- 4+ years of experience with security platforms, specifically Cloud SIEM, Application Security Management, Security Posture Management
- Strong experience with standing up Splunk ES in an enterprise-level organization
- GDI (Getting Data In) specialization: onboarding data through data classification, pipelining/ETL, data models & summarization (where applicable)
- Good working knowledge of the Splunk Common Information Model, and data model acceleration
- Strong knowledge of SPL, especially as it relates to correlation searches for notable events
- Knowledge of:
o PII / CCPA / GDPR rules
o data transformation
o experience with Linux
o log/event sources as they relate to security use cases (infrastructure, application, platform, audit trails, etc)
- A track record delivering quality results on complex cross-functional projects
- Analytical and problem-solving capabilities
- Strong verbal and written communication skills.
- Must be able to communicate with a wide variety of audiences, both business and technical
Bonus:
- Experience with other security tools such as Datadog, Sentinel, Prisma, etc
- Experience with data transformation and pipeline tools such as Splunk Edge Processor, Cribl, Datadog Observability Pipelines, etc.
- Experience/knowledge of Cloud Computing services (AWS, Azure, GCP), and monitoring and logging tools within these platforms
- Knowledge of OpenTelemetry, experience with OpenTelemetry API/SDK
*Skills:*
Cyber security, Siem, Security, Soc, Incident response, Splunk, Vulnerability detection
*Top Skills Details:*
Cyber security,Siem,Security,Soc,Incident response,Splunk,Vulnerability detection
*Additional Skills & Qualifications:*
The Splunk project is critical for business and an FY24 initiative. The Splunk ES SME/Siem Engineer will help to build out the strategy, onboarding for the entire application. Enterprise Engineering team manages Splunk enterprise but now they're purchasing Splunk ES, going to be onboarding this to have logging and monitoring capabilities for that module and working with existing apps onboarded into Splunk. Someone who has stood up Splunk ES in the past and has built pipelines for it. Person will be sitting in security but collaborating with other relevant teams.
This person might even be Architect level that can work with complicated environment and help manage/stand up the tool from scratch. Collaborating with engineers and pro services engineers from Splunk. Splunk Admins is what Splunk calls them - need a Splunk Admin/SME to help with strategy to build. They are doing it all - interacting with lead engineers and figuring out how process and handoffs will look for all security components, working with Splunk infra team to build process.
Strategy and planning supported by CISO but in the day to day regard working closely with engineers from Splunk to stand it up. Not all apps may have assets and identities - within that list there are use cases for each, prioritize based on the list of 13 and use cases up to 50 so want to onboarding up to 75 use cases before EOY and get everything built out.
*Experience Level:*
Expert Level
About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
-
Splunk Consultant
1 month ago
Seattle, United States TEKsystems Full timeDescription: Our client is looking for a motivated engineer to become a core member of the Cyber Enablement team, specifically in Enterprise Security, guiding the enterprise organization to improve the practice of security observability. As a SIEM Engineer focused on Splunk ES for Cyber Enablement, you will work closely with the Tech Security and...
-
Seattle, United States ITmPowered, LLC Full timeSr. Splunk Enterprise Security App Dev/Administrator (Remote) – ITmPowered Sr. Splunk Enterprise Security Developer Administrator will develop, create, integrate, and administer a highly advanced Splunk Security application (eSAR) developed internally to detect improper access to protected data by employees and malicious user activity. Develop Splunk Apps...
-
Seattle, United States ITmPowered, LLC Full timeSr. Splunk Enterprise Security App Dev/Administrator (Remote) - ITmPowered Sr. Splunk Enterprise Security Developer Administrator will develop, create, integrate, and administer a highly advanced Splunk Security application (eSAR) developed internally to detect improper access to protected data by employees and malicious user activity. Develop Splunk Apps...
-
Seattle, United States ITmPowered, LLC Full timeSr. Splunk Enterprise Security App Dev/Administrator (Remote) - ITmPowered Sr. Splunk Enterprise Security Developer Administrator will develop, create, integrate, and administer a highly advanced Splunk Security application (eSAR) developed internally to detect improper access to protected data by employees and malicious user activity. Develop Splunk Apps...
-
Seattle, Washington, United States ITmPowered, LLC Full timeSr. Splunk Enterprise Security App Dev/Administrator (Remote) at ITmPoweredWe are looking for a Senior Splunk Enterprise Security Developer Administrator to join our team. In this role, you will be responsible for developing, integrating, and administering a highly advanced Splunk Security application internally. Your main focus will be on detecting improper...
-
Dynatrace Consultant
7 days ago
Seattle, Washington, United States KTek Resourcing Full timeHello ,My name is Rajat, and I am a Technical Recruiter at K-Tek Resourcing. We are searching for professionals for the below business requirements for one of our clients.Please send me your updated resume at - My number is Title : Dynatrace ConsultantLocation : RemoteJob Description:Responsible for application and infrastructure observability within the...
-
NCR POS Technical Consultant
2 days ago
Seattle, United States Siri InfoSolutions Inc Full timeJob DescriptionJob DescriptionNCR POS Technical ConsultantLocation- Seattle, WA, USA (Hybrid)12 months+8-10 Years of work experience in NCR Retail Point of sale Technical Consulting/Engineering.NCR POS advance store systems deployment, EOM changes, Testing, Development(.Net), Selenium, Load runner, Troubleshoot and resolve hardware and software issues in a...
-
Senior NCR POS Testing Consultant
24 hours ago
Seattle, United States Artmac Soft LLC Full timeJob DescriptionJob DescriptionWho we areArtmac Soft is a technology consulting and service-oriented IT company dedicated to providing innovative technology solutions and services to Customers.Job Description: Job Title : Senior NCR POS Testing ConsultantJob Type : W2 / C2C / 1099Experience : 8-12 Years Location : Seattle, Washington We are looking for a...
-
Technical Account
4 weeks ago
Seattle, United States Scuba Analytics Full timeTechnical Account / Customer Success Manager (TCSM) Remote-US Reporting to: Sr. Director, Solutions Delivery WHY SCUBA? SCUBA is the only Decentralized Collaborative Decision Intelligence platform providing in-the-moment decision intelligence without compromising privacy. Global brands like Microsoft, McDonald's, Twitter, and Warner Bros trust SCUBA to gain...
-
Machine Learning Engineer
2 months ago
Seattle, United States Tiger Analytics Full timeJob DescriptionJob DescriptionTiger Analytics is an advanced analytics consulting firm. We are the trusted analytics partner for several Fortune 100 companies, enabling them to generate business value from data. Our consultants bring deep expertise in Data Science, Machine Learning, and AI. Our business value and leadership have been recognized by various...
-
Machine Learning Engineer
2 months ago
Seattle, United States Tiger Analytics Full timeJob DescriptionJob DescriptionTiger Analytics is an advanced analytics consulting firm. We are the trusted analytics partner for several Fortune 100 companies, enabling them to generate business value from data. Our consultants bring deep expertise in Data Science, Machine Learning, and AI. Our business value and leadership have been recognized by various...
-
Machine Learning Engineer
7 days ago
Seattle, United States Tiger Analytics Full timeJob DescriptionJob DescriptionTiger Analytics is an advanced analytics consulting firm. We are the trusted analytics partner for several Fortune 100 companies, enabling them to generate business value from data. Our consultants bring deep expertise in Data Science, Machine Learning, and AI. Our business value and leadership have been recognized by various...
-
Machine Learning Engineer
3 weeks ago
Seattle, United States Tiger Analytics Full timeJob DescriptionJob DescriptionTiger Analytics is an advanced analytics consulting firm. We are the trusted analytics partner for several Fortune 100 companies, enabling them to generate business value from data. Our consultants bring deep expertise in Data Science, Machine Learning, and AI. Our business value and leadership have been recognized by various...
-
Machine Learning Engineer
2 months ago
Seattle, United States Tiger Analytics Full timeTiger Analytics is an advanced analytics consulting firm. We are the trusted analytics partner for several Fortune 100 companies, enabling them to generate business value from data. Our consultants bring deep expertise in Data Science, Machine Learning, and AI. Our business value and leadership have been recognized by various market research firms, including...
-
Machine Learning Engineer
2 months ago
Seattle, WA, United States Jupiter Power Full timeDescription Tiger Analytics is an advanced analytics consulting firm. We are the trusted analytics partner for several Fortune 100 companies, enabling them to generate business value from data. Our consultants bring deep expertise in Data Science, Machine Learning, and AI. Our business value and leadership have been recognized by various market research...
-
Machine Learning Engineer
2 months ago
Seattle, WA, United States Tiger Analytics Full timeTiger Analytics is an advanced analytics consulting firm. We are the trusted analytics partner for several Fortune 100 companies, enabling them to generate business value from data. Our consultants bring deep expertise in Data Science, Machine Learning, and AI. Our business value and leadership have been recognized by various market research firms, including...
-
Sr. DevOps Engineer
4 weeks ago
Seattle, United States Saxon Global Full timeSr. DevOps Engineer Location: Local (3 days at SSC) Duration: 3 Months w/ Extension Daily Responsibilities :80% hands on development work20% troubleshootingHelp influence and drive technical decisions within team and with stakeholdersAccurately interpret and incorporates automation focus intakes to comply with Starbucks Cloud governance and Global Cyber...
-
Engineer Senior
1 day ago
Seattle, United States Starbucks Full timeJob Summary and Mission This position contributes to Starbucks success by delivering high quality and reliable products and services of a Platform Development Team with a strong focus on platform and application automation. As engineer Sr. in platform development, you are responsible for planning, delivery, and operations of solutions. You are also...
