Junior Splunk Engineer @ Coalfire | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
Junior Splunk Engineer jobs in United StatesH1B Visa Sponsored Junior Splunk Engineer jobs in United States
200+ applicants
job-post-linkOriginal Job Post
company-logo

Coalfire · 2 days ago

Junior Splunk Engineer

positionUnited States
timeFull-time
remoteRemote
seniorityEntry Level
money$81K/yr - $102K/yr
date1+ years exp

Wonder how qualified you are to the job?

ftfMaximize your interview chances
Computer and Network Security
check
H1B Sponsorship

Insider Connection @Coalfire

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Provide 24x7x365 security monitoring for multiple clients while working closely with DevOps and product teams
Work across a myriad of technology stacks in leading cloud providers like AWS, Azure, and GCP
Analyze security events using logs and open-source knowledge to determine legitimate or false positive nature
Maintain a record of security monitoring activities via case management and ticketing technologies
Administer and monitor intrusion detection, file integrity, endpoint protection, log management and SIEM solutions
Integrate security tools using a wide variety of data sources that use various protocols
Design, build, and maintain environment-specific rules, alerts, and dashboards in SIEM tooling via custom queries
Consult with clients to customize and configure SIEM tools in order to meet security and compliance requirements
Communicate alerts to team members and clients related to security anomalies in the environment
Apply technical writing skills to create formal documentation such as analytical reports and briefings
Develop and maintain standard operating procedures and training materials
Participate in on-call rotations as needed to support client operational needs that may lay outside of business hours
Conduct testing and data reviews to evaluate the effectiveness of current security and operational measures
Assist with administration and maintenance of SIEM, Log Management, and Data Analytical Platform
Conduct System Health Checks on managed technologies and provide recommendations on performance improvements
Schedule and run regular technical changes such as version updates, security patches, major software releases following best practices for change management policies and procedures
Aiding customer-initiated requests such as Log Source configuration, App installation, Data Parsing, Use Case Development, and Troubleshoot complex issues for managed technologies.
Create and maintain standard operating procedures, technical documents, and troubleshooting guidelines of security solutions.
Configure and troubleshoot managed security devices
Develop technical solutions to automate repeatable tasks
Opening and following up on tickets and customer requests with 3rd party vendors
Utilize tools and analytical skills to investigate the root cause of issues across the technologies
Areas of responsibility will include onboarding new data sources, developing alerting, developing run books, conducting security investigations, responding to incidents, and deploying security solutions in a rapidly growing environment

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Security operationsSIEMIDSEndpoint protectionCloud operationsAutomationAzureAWSGCPITSMJiraServiceNowSplunkELKRegular expressionQuery languagesLinux infrastructureIncident responseSecurity engineeringLog analysisForensic analysisVulnerability assessmentPlaybooksRun booksAWS integrationsSaaS integrationsAutomation toolsSecurity toolsDocumentationTechnical diagrams

Required

BS or above in related Information Technology field or equivalent combination of education and experience
1-2 years experience in 24x7x365 production security operations
1-2 years experience administering and operating security tooling such as SIEM, IDS, and endpoint protection
2+ years of hands-on technical experience supporting cloud operations and automation in Azure, AWS, and/or GCP
Experience with ITSM solutions such as Jira and ServiceNow
Certifications such as Splunk Enterprise Certified Admin/Splunk Power User or ELK Certification
Experience configuring, implementing, and supporting Splunk Enterprise components deployed in the Cloud
Understanding of regular expression and query languages
Practical experience in administration of Linux infrastructure
Experience in Information Security with a focus on incident response and security engineering
Experience analyzing events or incidents to triage the issue, find the root cause through log and forensic analysis, and determine security vulnerabilities, attacker exploit techniques, and methods for their remediation
Experience developing playbooks, run books, troubleshoot technical issues, and recognize and identify patterns
Experience with AWS and vendor SaaS Integrations
Experience with automation, building security, and/or deploying tools
Excellent communication, organizational, and problem-solving skills in a dynamic environment
Effective documentation skills, to include technical diagrams and written descriptions
Ability to work independently and as part of a team with a professional attitude and demeanor

Benefits

Flexible work model
Paid parental leave
Flexible time off
Certification and training reimbursement
Digital mental health and wellbeing support membership
Comprehensive insurance options

Company

Coalfire

twitter
Glassdoor
3.8
company-logo
The world’s leading organizations – including the top five cloud service providers and leaders in financial services, healthcare, and retail – trust Coalfire to elevate their cyber programs and secure the future of their business.
dateFounded in 2001
location
Greenwood Village, CO
people-size1,001-5,000 employees
web-link
https://www.coalfire.com?utm_source=LinkedIn&utm_medium=organicsocial

H1B Sponsorship

Coalfire has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2023 (1)
2022 (8)
2021 (2)
2020 (2)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Tom McAndrew
CEO
linkedin
leader-logo
Merri Chandler
Chief Financial Officer
linkedin
Company data provided by crunchbase
logo

Orion

Your AI Copilot