Security Engineer (Splunk Engineer)

IT
Synergies La Romana, Synergies Santiago, Synergies Santo Domingo
Posted 6 months ago

Job Description

 The Information Security Engineer will be a part of the corporate information security logging and monitoring team. Security Engineer will have a passion for managing corporate information security along with a desire to relentlessly champion best practices. This role is responsible for performing all functions required to support day-to-day security operations, while supporting and maintaining a central logging and SIEM infrastructure. Candidate will collaborate with Information Technology staff and business units to examine and understand and assist with their logging requirements.

Major Responsibilities

· Configure Splunk Searching and Reporting modules, Knowledge Objects, Administered Data Ingestion, Add-On’s, Dashboards, and Forwarder Management

· Support the team to maintain the strategic Splunk architectural development roadmap

· Support the Splunk deployment and server infrastructure analysis, optimization, and capacity planning · Support for onboarding and maintaining a wide variety of data sources to include various OS, appliance, and application logs

· Configure Splunk forwarders and indexers to ingest infrastructure logs.

· Support Splunk on Unix, Linux, and Windows-based platforms

· Perform data mining and analysis, using various query and reporting methods

· Help with general troubleshooting issues around integration and configuration issues

· Create advanced searches, dashboards, visualizations on Splunk Cloud and ES

· Technical writing/creation of formal documentation such as architecture diagrams, technical designs, and SOPs

· Support Splunk syslog, heavy-forwarder on-prem environment

· Provide operations support around the entire Splunk environment

Skills and Experience

· Experience in setting up and managing an Enterprise-wide Security Incident and Event Management (SIEM) based on Splunk Cloud

· Understanding the structure of Network Devices logs, VMWare infrastructure, Strong understanding of the IP/TCP Stack

· Experience with Python, Shell or other scripting language Good knowledge of virtual environment based on VMWare infrastructure

· Demonstrated experience in using API for data ingestion and tools integration

· Demonstrated experience in Windows, Linux/UNIX Systems administration, preferably with RedHat

 · Understanding of service delivery management and service lifecycle

· Self-motivated and self-educating, yet willing and able to work collaboratively with both customers and fellow team members

Typical Education

Bachelor’s Degree, Information Systems, Computer Science, Information Security, Telecommunications or equivalent work experience required.

License or Certification

· Splunk Certified Preferred

· Familiarity with Security regulations as they pertain to the financial industry.

· Understanding of risks in financial services.

Job Features

Job CategoryFull Time

Apply Online

A valid email address is required.
A valid phone number is required.

Additional Information