SIEM Splunk Engineer

Are you an enthusiastic cybersecurity professional eager to make a tangible impact? Are you driven to stay ahead of emerging threats and devise innovative strategies? If so, you could be the ideal candidate for the SIEM Splunk Engineer role at Fivesky!

Who You Are:

• Splunk Expert:Proficient in Splunk and SPL for data analysis and insights. Navigates Splunk ES and SIEM platforms for advanced threat detection and response.
• Incident Response Collaborator: Collaborates with SOC and IR teams for optimized detection and response.
• Scripting Proficiency: Skilled in Python and Bash scripting, automating incident response.
• Cloud Security: Familiar with AWS, Azure, ensuring robust cloud security.
• Linux Mastery: Administers Linux, ensuring seamless operations and effective log analysis.
• Playbook Expert: Designs comprehensive incident response playbooks with technical and strategic acumen.
• Cybersecurity Passion: Holds a Bachelor's Degree in Computer Science, dedicated to safeguarding digital landscapes.
• Innovative Researcher and Clear Communicator: Excels in continuous research and development, staying ahead of emerging cybersecurity trends. Effectively conveys complex ideas through exceptional written and oral communication, fostering strong team dynamics within the SOC.

What You'll Do:

• Decode network and security logs, pinpoint anomalies, vulnerabilities, and bolster defenses.
• Innovate threat detection scenarios, stay ahead of emerging risks.
• Elevate security analytics with Splunk, fine-tune incident response.
• Craft insightful SOC metric dashboards, aiding informed decision-making.
• Develop SOAR automation strategies (Python) for swift incident response.
• Create new correlation rules for heightened threat precision.

It Would Be Awesome If You Had:

• Proficient in Python, Bash, and Phantom for security orchestration.
• Utilize high-throughput messaging and data integration for seamless security event processing.
• Interpret diverse data formats (HTTP, REST APIs, JSON, syslog) for comprehensive log analysis.
• Orchestrate ETL processes for data transformation and enhanced cybersecurity analysis.

Who we are: 

Fivesky is a fast-growing, global technology solution provider. We partner with the world’s largest financial service firms to deliver networking/infrastructure, cybersecurity, and cloud-based solutions for complex, global projects.

At Fivesky, our employees are our greatest asset and we strive to build a strong team culture centered on highly competitive compensation, professional development, career advancement, and fun.

Fivesky is an equal opportunity employer. In accordance with anti-discrimination law, it is the purpose of this policy to effectuate these principles and mandates. Fivesky prohibits discrimination and harassment of any type and affords equal employment opportunities to employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity or expression, pregnancy, age, national origin, disability status, genetic information, protected veteran status (United States positions), or any other characteristic protected by law. 

This is a Full Time Employed position in Baltimore, MD. The compensation package is based on experience and qualifications.

(FS-RID-0615)