Splunk Engineer

Description

The Splunk Cyber Engineer Principal specific duties and responsibilities highlight the key tasks involved in securing systems, assessing risks, implementing controls, and ensuring compliance with security policies and regulations. The engineer plays a crucial role in safeguarding the organization's information assets and responding to potential threats and vulnerabilities.

Key Responsibilities include:

· Design, test, and implement secure systems: The Cyber Engineer is involved in designing, testing, and implementing secure operating systems, networks, and IT security systems and applications. This includes security monitoring, tuning, and management to ensure the integrity and confidentiality of information.

· Risk and vulnerability assessment: The engineer conducts risk and vulnerability assessments at the network, system, and application levels. They identify potential risks and vulnerabilities and recommend appropriate security controls and operational risk mitigations.

· Threat modeling: The specialist conducts threat modeling exercises to identify potential threats and vulnerabilities within systems and applications. This helps in designing appropriate security measures and safeguards.

· Security control implementation: The Cybers Engineer develops and implements security controls to protect systems and applications. They formulate operational risk mitigations and assist in security awareness programs to educate users about security best practices.

· Research and evaluation of security tools and technologies: The engineer researches, evaluates, and recommends new security tools, techniques, and technologies. They introduce these tools to the organization in alignment with the IT security strategy to enhance the overall security posture.

· Vulnerability scanning and incident response: The engineer utilizes commercial off-the-shelf (COTS) and government off-the-shelf (GOTS) tools and custom processes to scan, identify, contain, mitigate, and remediate vulnerabilities and intrusions.

· Compliance and policy implementation: The Cyber Engineer assists in the implementation of government policies and regulations such as DISA STIGS. They provide recommendations on process tailoring to ensure compliance.

Qualifications

Requirements:

Specialize in setting up and configuring Splunk for compliance purposes.

· Establish compliance data models and integrate compliance data feeds.

· Ensure the effective utilization of Splunk for security monitoring and incident response.

· Collaborate with other teams to define and implement compliance requirements.

Education and Experience:

· BA/BS in a related field with 9 to 13 years of cyber experience or MA/MS with 7+ years of experience.

· Strong expertise in Splunk setup, configuration, and utilization.

· Experience with compliance data models and integration.

· Knowledge of security monitoring, incident response, and compliance standards.

· Non-expired cyber security professional certification: CISSP, Security+, CCSP, or CISA

· US Citizenship Required.

· Must have the ability to obtain a Public Trust Clearance prior to starting work.

SAIC accepts applications on an ongoing basis and there is no deadline.


Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.