Splunk Architect -Remote Position Several (Chicago, Stamford, Atlanta, Dayton, OHSSG010

Chicago, IL Chicago IL 60701

Date : Jun-20-18

Chicago, IL

Jun-20-18

Work Authorization

US Citizen
GC
H1B
GC EAD

Preferred Employment

Corp-Corp
W2-Permanent
W2-Contract
1099-Contract
Contract to Hire

Job Details

Experience

Architect

Rate/Salary ($)

DOE

Duration

12 months Contract

Sp. Area

Sys Admin, IDM, Cyber, Sec OPS

Sp. Skills

x-Other

Permanent Direct Hire

Consulting / Contract

Third Party OK

Required Skills :

splunk architect, splunk admin, security content

Preferred Skills :

Domain :

Work Authorization

US Citizen
GC
GC EAD
H1B

Preferred Employment

Corp-Corp
W2-Permanent
W2-Contract
1099-Contract
Contract to Hire

Job Details

Experience

Architect

Rate/Salary ($)

DOE

Duration

12 months Contract

Sp. Area

Sys Admin, IDM, Cyber, Sec OPS

Sp. Skills

x-Other

Permanent Direct Hire

Consulting / Contract

Third Party OK

Required Skills :

splunk architect, splunk admin, security content

Preferred Skills :

Domain :

Amtex Systems Inc.
New York, NY
Post Resume to
View Contact Details &
Apply for Job

Job Description :

Splunk Architect
Remote Position Several (Chicago, Stamford, Atlanta, Dayton, OH)
12+months Contract
Phone + Skype interview

The Splunk Enterprise Security Admin will perform enhancements, upgrades, and expansions to a large enterprise-scale Splunk Enterprise Security implementation in a Search Head Cluster. He or she will drive new technical integrations and best practices, assist with migration to the cloud, ensure robust searching and alerting across clusters, and troubleshoot issues as needed. The Splunk Enterprise Security Admin provides guidance and support to the Splunk Operations team and partners closely with the Security Content team, AWS Cloud team, Identity and Access Management, and the Splunk Development teams to enhance practices and ensure that Splunk is performing exceptionally well and reliably across the enterprise.
Essential Responsibilities
Manage and implement upgrades, enhancements, and expansions for Splunk Enterprise Security in a search head cluster environment
Provide end-to-end technical oversight across security-relevant Splunk technology add-ons and knowledge objects
Collaborate to ensure integration of all security tools, including security orchestration tools and threat intelligence feeds, as well as asset and identity data
Support development of scripts (python, JavaScript, etc as needed in support of data collection or integration
Develop searches, reports and dashboards as needed in support of the detection team and Joint Security Operations Center
Manage access controls for the Enterprise security cluster
Perform capacity planning and integration across the environment
Maintain documentation including Management Guides, Operation Plans, Workflows, Processes, and Continuity of Business Plans
Basic Qualifications/Requirements
3+ years’ experience configuring and managing Splunk
2+ years’ experience as Splunk Admin, Architect or security content developer
1+ years’ experience with Enterprise Security Administration
Certified as either Splunk Admin or Power User
Bachelor''s Degree and a minimum 5 years of information technology experience or, in lieu of a Bachelor Degree, a High School Diploma/GED and a minimum of 9 years of information technology experience