Be an early applicantLess than 25 applicants

Company

Idexcel · 3 hours ago

Splunk Cyber Security Architect

Washington, DC

Contract

Remote

Senior Level, Lead/Staff

10+ years exp

Maximize your interview chances

Cloud ComputingInformation Technology

Growth Opportunities

H1B Sponsor Likely

Hiring Manager

Chandra S

Insider Connection @Idexcel

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Develop and implement actionable alerts and workflows for Splunk as a SIEM tool.

Create and manage Splunk Apps & Knowledge Objects (KOs) such as dashboards, reports, and data models.

Collaborate with Splunk Architects/Admins to promote private KOs to global KOs.

Train and assist CISO Splunk Engineering teams in data lifecycle support.

Host workshops for CISO teams and analysts on searching and content development.

Implement automation to enhance CISO workflows using Splunk.

Develop advanced security use cases, risk rules, and incident rules for cyber event correlation.

Create custom dashboards for RBA, including risk detail, health analysis, and risk suppression.

Configure incident response and remediation workflows around notable events.

Develop custom ML models for anomaly detection and alert augmentation.

Collaborate with stakeholders to implement and maintain event logging from various systems and applications.

Maintain a strong understanding of network protocols, operating systems, and device event telemetry.

Utilize knowledge of network and endpoint defense tools.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

SplunkRisk-Based AlertingCompTIA Security+Cybersecurity ExperienceAdvanced AnalyticsCertified Penetration Testing EngineerCertified Ethical HackerCertified Information Systems AuditorCISSPNIST StandardsNetwork ProtocolsOperating SystemsSAASCloud-hosted SplunkDevice Event TelemetryEndpoint Defense ToolsTechnical WritingCollaboration Skills

Required

Expertise in Splunk, including use case development, dashboard creation, and data integration.

Experience with risk-based alerting, advanced analytics, and security frameworks.

Strong communication, collaboration, and organizational skills.

10+ years in cybersecurity and NIST standards.

5+ years of technical writing experience.

Bachelor’s Degree in Business, Engineering, Management Sciences, Computer Science, Information Systems, Social Science, Education, HR Development, Psychology, or related disciplines.

CompTIA Security+

CPTE - Certified Penetration Testing Engineer or CEH - Certified Ethical Hacker

CISA - Certified Information Systems Auditor

Preferred

Familiarity with SAAS or cloud-hosted Splunk implementations is a plus.

Advanced degrees are preferred with commensurate years of experience.

CISSP, CISSP-ISSEP, CISSP-ISSAP, or CISSP-ISSMP preferred

Company

Idexcel

Glassdoor

4.3

Idexcel is a Professional Services and Technology Solutions provider specializing in Cloud Services, Cloud Native Services, Data Platforms and Intelligence, Automation & AI.

Founded in 1998

Herndon, Virginia, USA

501-1,000 employees

https://www.idexcel.com/

H1B Sponsorship

Idexcel has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2023 (89)

2022 (192)

2021 (195)

2020 (247)

Funding

Current Stage

Late Stage

Company data provided by crunchbase

Orion

Your AI Copilot