Neos Consulting Group · 12 hours ago
Cloud Security Engineer, Splunk Expert
Austin, TX
Contract
Onsite
Senior Level, Lead/Staff
8+ years expNeos Consulting Group is seeking a Senior Cybersecurity Engineer/Architect specializing in Splunk for a contract role with the Office of Attorney General in Austin, TX. The role involves architecting and maintaining enterprise security tools and services, with a focus on Splunk architecture, cloud security integration, and automation to enhance security operations.
Information ServicesInformation Technology
Responsibilities
Architect, deploy, and optimize enterprise Splunk environments (Cloud or Enterprise) for performance, scalability, and reliability
Engineer and manage log onboarding, parsing, normalization, and indexing strategies to support security analytics and compliance reporting
Build and tune Splunk correlation searches, detection logic, dashboards, and alerting aligned to enterprise security objectives
Design Splunk visibility across cloud, endpoint, identity, network, and SaaS to ensure complete monitoring coverage
Integrate AWS security telemetry into Splunk (example sources: CloudTrail, GuardDuty, Security Hub, VPC Flow Logs)
Integrate Azure security telemetry into Splunk (example sources: Azure AD logs, Defender telemetry, Activity Logs, NSG Flow Logs)
Ensure cloud log integrity and coverage across accounts/subscriptions, regions, and environments
Support cloud security engineering controls and data pipelines to strengthen detection and response
Perform hands-on deployment and integration of enterprise security solutions including: SIEM (Splunk), CASB, DLP, Endpoint Detection & Response (EDR), Additional security controls and monitoring platforms as needed
Integrate security tooling into enterprise infrastructure, ensuring appropriate telemetry, controls, and alerting are in place
Troubleshoot complex security technology issues across hybrid systems and 'multi-vendor' environments
Design and implement automated workflows using Splunk-native or integrated tools (examples: Splunk SOAR, APIs, scripting, orchestration tools)
Build automation for repetitive security operations (alert enrichment, triage workflows, ticketing integration, notifications, and response actions)
Partner with security leadership to identify where AI + Copilot capabilities can enhance security engineering outcomes (faster investigation, better detection coverage, improved operational efficiency)
Develop secure approaches to integrating AI workflows with Splunk and enterprise security tooling
Qualification
Required
8+ years of experience in security engineering, SIEM engineering, or security architecture
8+ years of experience with Splunk (architecture, onboarding, search optimization, dashboards, correlation rules, alerts)
5+ years of experience of hands-on experience supporting environments across AWS and/or Azure
5+ years of experience with Splunk ES (Enterprise Security) and security content development
2+ years experience with Microsoft Copilot / AI-powered security workflows, including integrating AI into operational processes
Proven background implementing and integrating enterprise security tooling such as SIEM, CASB, EDR, and DLP
Experience troubleshooting complex issues across hybrid/heterogeneous enterprise infrastructures
Ability to design for full security visibility across enterprise systems (identity, endpoint, cloud, network, SaaS)
Experience with Splunk SOAR and orchestration/automation use cases
Experience leveraging AI to improve security engineering functions (alert reduction, correlation improvements, investigation workflows)
Preferred
Cloud security certifications (preferred): AWS, Azure, security-focused credentials
Company
Neos Consulting Group
Neos is an Austin Tx based IT consulting and staffing firm specializing in Texas state and local governments, & higher education verticals.
51-200 employees
Funding
Current Stage
Growth StageLeadership Team
Richard Carter
Founder & Partner
Company data provided by crunchbase