Logo
Cetera Financial Group

Security Services Principal

Cetera Financial Group, El Segundo, California, 90245


Job Description We are at the forefront of transforming the future of technology in the financial industry, and we seek curious, practical individuals to help us pave the way. Our team is not intimidated by taking calculated risks, as they relish a good challenge and are eager to engage in problem-solving. As a member of our team, you will work alongside like-minded experts in a culture that is deeply rooted in innovation and progression. Join us to be part of a transformative journey that can shape the industry's future. We are seeking a skilled and experienced Security Services Principal Engineer to play a crucial role in monitoring and analyzing our organization's security infrastructure, detecting and responding to potential threats and incidents, and ensuring the overall security of our systems. What you will do: Monitor security events and alerts from various sources, to include Splunk, and other security tools. Analyze and investigate security incidents to determine their root cause, impact, and potential risks. Configure and maintain Splunk platform to ensure efficient log aggregation, correlation, and event analysis. Create and fine-tune Splunk correlation alerts to detect to security incidents effectively. Provide timely and accurate reports on security incidents, threats, and vulnerabilities to management and stakeholders. Collaborate with internal teams to develop and enhance security policies, procedures, and guidelines. What you will have: Splunk Expertise in developing and managing Splunk applications, dashboards, and visualizations. Proficient in Splunk Query Language for creating efficient and reusable searches. Skilled in designing, deploying, and maintaining Splunk infrastructure. Ability to troubleshoot and resolve issues within the Splunk environment. Experience with integrating Splunk with various systems and data sources. Knowledge of managing Splunk knowledge objects (Apps, Dashboards, Saved Searches, Alerts). Cribl Proficiency in utilizing Cribl for data routing, filtering, and transformation. Experience with Cribl Stream and Cribl Edge for optimizing data flow. Ability to configure and manage Cribl LogStream for real-time data processing. Skilled in integrating Cribl with Splunk and other SIEM solutions. Capable of troubleshooting and resolving issues within Cribl environments. Understanding of Cribl's role in enhancing data observability and security. Palo Alto XSOAR Expertise in designing and implementing automated security orchestration and response workflows. Proficient in integrating XSOAR with various security tools and data sources. Ability to create and manage playbooks for incident response and threat mitigation. Skilled in customizing XSOAR dashboards and reports for SOC operations. Experience with troubleshooting and optimizing XSOAR integrations. Knowledge of utilizing XSOAR for threat intelligence and automated response actions. Darktrace Proficiency in deploying and managing Darktrace's AI-driven cybersecurity solutions. Skilled in configuring Darktrace for real-time threat detection and autonomous response. Ability to analyze and interpret Darktrace alerts and threat intelligence data. Experience with integrating Darktrace with other security platforms and tools. Capable of troubleshooting and resolving issues within Darktrace environments. Understanding of Darktrace's machine learning algorithms and their application in threat detection. Integrations with Jira Proficiency in integrating Jira with security tools for streamlined incident tracking and management. Skilled in creating and managing workflows and automation rules within Jira. Experience with configuring Jira for effective SOC team collaboration and communication. Ability to troubleshoot and resolve integration issues between Jira and other platforms. Knowledge of leveraging Jira for project management and issue tracking within a SOC environment. Integrations with ServiceNow Expertise in integrating ServiceNow with various security tools for efficient incident response and management. Proficient in configuring ServiceNow workflows, automation, and reporting for SOC operations. Skilled in customizing ServiceNow dashboards and interfaces to meet SOC requirements. Experience with troubleshooting and optimizing ServiceNow integrations. Ability to leverage ServiceNow for IT service management and operational efficiency within a SOC. The salary range for this role is $150,000.00 - $190,000.00 plus competitive performance-based bonus. Compensation packages are based on a wide array of factors unique to each candidate, including but not limited to skill set, years and depth of experience, certifications, and specific office location. Compensation ranges may differ in differing locations due to cost of labor considerations. LI-Remote About Us What we give you in return: Not many teams can say that they support people's dreams coming to life We happen to do that every day. And as important as we know your career is, we recognize that there's a whole lot more to life. To ensure that our Employees can make the most of their time outside of working hours, we offer a competitive salary and for full-time roles, a benefits package including: Inclusive health, dental, vision and life insurance plans built to support diverse lifestyles, offer preventative care, and protect against hardship. Easy access to mental health benefits to meet our team members and their families where they are. 20 days of paid time off (PTO), paid holidays, 1 paid wellness day and 1 days of paid volunteer time off (VTO) to give our employees the time they need to stay close with their loved ones, recharge, and give back to their communities. 401(k) Savings plan with a generous company contribution (up to 5%), and access to a financial professional to offer our employees the opportunity to plan-ahead for a strong financial future well beyond their working years. Paid parental leave to support all team members with birth, adoption, and foster. Health Savings and Flexible Spending Account options to help you save money on healthcare, daycare, commuting, and more. Employee Assistance Program (EAP), LifeLock, Pet Insurance and more. About Cetera Financial Group: Cetera Financial Group® ("Cetera") is a leading network of independent retail broker-dealers empowering the delivery of objective financial advice to individuals, families and company retirement plans across the country through trusted financial advisors and financial institutions. Cetera is an independent financial advisor network and a leading provider of retail services to the investment programs of banks and credit unions. Through its multiple distinct firms, Cetera offers independent and institutions-based advisors the benefits of a large, established broker-dealer and registered investment adviser, while serving advisors and institutions in a way that is customized to their needs and aspirations. Advisor support resources offered through Cetera include award-winning wealth management and advisory platforms, comprehensive broker-dealer and registered investment adviser services, practice management support and innovative technology. "Cetera Financial Group" refers to the network of retail independent broker-dealers encompassing, among others, Cetera Advisors, Cetera Advisor Networks, Cetera Financial Institutions, Cetera Financial Specialists, and First Allied Securities. Cetera Financial Group is committed to providing an equal employment opportunity for all applicants and employees. For us, this is the only acceptable way to do business. Accordingly, all employment decisions at the Cetera Financial Group, including those relating to hiring, promotion, transfers, benefits, compensation, and placement, will be made without regard to race, color, ancestry, national origin, citizenship, age, physical and/or mental disability, medical condition, pregnancy, genetic characteristics, religion, religious dress and/or grooming, gender, gender identity, gender expression, sexual orientation, marital status, U.S. military status, political affiliation, or any other class protected by state and/or federal law. Agencies please note : this recruitment assignment is being managed directly by Cetera's Talent Acquisition team. We will reach out to our preferred agency partners in the rare instance we require additional talent options. Your respect for this process is appreciated. Please review our Workforce Privacy Policy for further details on what information we collect and the purposes for collection.