Conexess
Splunk Engineer
Conexess, Franklin, Tennessee, us, 37068
Our history:From our start in 2009, Conexess has established itself in 3 markets, employing nearly 200+ individuals nationwide. Operating in over 15 states, our client base ranges from Fortune 500/1000 companies to mid-small range companies. For the majority of the mid-small range companies, we are exclusively used due to our outstanding staffing track record
Who We Are:Conexess is a full-service staffing firm offering contract, contract-to-hire, and direct placements. We have a wide range of recruiting capabilities, from help desk technicians to CIOs. We are also capable of offering project-based work.Senior Consulting Engineer - SplunkPosition OverviewAs a systems security and network security engineer, you can identify the tools needed to assess vulnerabilities and recommend the best solution and security strategy. We need your experience to lead the development and implementation of security solutions that will protect infrastructure.The ideal candidate will be responsible for the design, implementation, and management of Splunk infrastructure, ensuring high performance, availability, and scalability. This role requires deep technical expertise in Splunk as well as the ability to work collaboratively with other teams to integrate Splunk into various IT and security systems.Responsibilities:Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences including senior management.Plan, design, engineer, and implement security-related technologies to enhance the security posture of clients.Implement infrastructure and cyber security controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises.Perform risk and vulnerability assessments in network, system, and application areas, leveraging big data analytics and traditional security event types to identify advanced threats or indicators of compromise.Lead the design, deployment, and maintenance of Splunk infrastructure across multiple environments.Architect complex Splunk solutions tailored to the organization's needs, ensuring data integrity and optimal performance.Integrate and ingest data from various sources (applications, network devices, security tools) into Splunk, ensuring data normalization and enrichment.Design, develop, and maintain custom dashboards, reports, and alerts for different stakeholders (IT, Security, Compliance).Support security monitoring, threat detection, and incident response efforts.Provide mentoring and training to junior Splunk engineers and other IT staff.Troubleshoot and resolve complex Splunk-related issues ensuring minimal downtime and service disruption.Develop scripts and automation tools to streamline Splunk administration, data ingestion, and reporting tasks.Maintain detailed documentation of Splunk architecture, configurations, processes, and procedures.Generate periodic reports on Splunk performance, usage, and incidents for management review.
Preferred Qualifications:
Bachelor's degree in Computer Science, Engineering, or a related discipline, or 5+ years of previous technical security experience.A minimum of 5+ years of hands-on experience in building, designing, and maintaining enterprise security tools such as SIEM and SOAR.Minimum of 5 years of experience working with Splunk in a large-scale environment.Proven experience in designing and managing Splunk Enterprise and Splunk Cloud.Experience with cloud platforms (AWS, Azure, Google Cloud Platform) and their integration with Splunk.Strong knowledge of Splunk SPL (Search Processing Language) and regular expressions.Hands-on technical experience with networking and computing system architectures, specifically the security aspects thereof.Ability to tune SIEM event correlation rules and logic to filter out security events associated with known and well-established network behavior, known false positives, or known errors.Possession of excellent verbal and written communication skills, including the ability to communicate and present technical issues to audiences with varying degrees of technical expertise.Experience as a security engineer or security analyst.Ability to build and implement event correlation rules, logic, and content in the security information and event management system in the Splunk platform.Splunk Advanced certifications (Splunk Cloud Certified Admin, Enterprise Certified Admin, Enterprise Certified Architect) and security certifications (CISSP, etc.) are a plus.Grittiness: ability to persevere and tackle hands-on problems when others fall away.
Who We Are:Conexess is a full-service staffing firm offering contract, contract-to-hire, and direct placements. We have a wide range of recruiting capabilities, from help desk technicians to CIOs. We are also capable of offering project-based work.Senior Consulting Engineer - SplunkPosition OverviewAs a systems security and network security engineer, you can identify the tools needed to assess vulnerabilities and recommend the best solution and security strategy. We need your experience to lead the development and implementation of security solutions that will protect infrastructure.The ideal candidate will be responsible for the design, implementation, and management of Splunk infrastructure, ensuring high performance, availability, and scalability. This role requires deep technical expertise in Splunk as well as the ability to work collaboratively with other teams to integrate Splunk into various IT and security systems.Responsibilities:Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences including senior management.Plan, design, engineer, and implement security-related technologies to enhance the security posture of clients.Implement infrastructure and cyber security controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises.Perform risk and vulnerability assessments in network, system, and application areas, leveraging big data analytics and traditional security event types to identify advanced threats or indicators of compromise.Lead the design, deployment, and maintenance of Splunk infrastructure across multiple environments.Architect complex Splunk solutions tailored to the organization's needs, ensuring data integrity and optimal performance.Integrate and ingest data from various sources (applications, network devices, security tools) into Splunk, ensuring data normalization and enrichment.Design, develop, and maintain custom dashboards, reports, and alerts for different stakeholders (IT, Security, Compliance).Support security monitoring, threat detection, and incident response efforts.Provide mentoring and training to junior Splunk engineers and other IT staff.Troubleshoot and resolve complex Splunk-related issues ensuring minimal downtime and service disruption.Develop scripts and automation tools to streamline Splunk administration, data ingestion, and reporting tasks.Maintain detailed documentation of Splunk architecture, configurations, processes, and procedures.Generate periodic reports on Splunk performance, usage, and incidents for management review.
Preferred Qualifications:
Bachelor's degree in Computer Science, Engineering, or a related discipline, or 5+ years of previous technical security experience.A minimum of 5+ years of hands-on experience in building, designing, and maintaining enterprise security tools such as SIEM and SOAR.Minimum of 5 years of experience working with Splunk in a large-scale environment.Proven experience in designing and managing Splunk Enterprise and Splunk Cloud.Experience with cloud platforms (AWS, Azure, Google Cloud Platform) and their integration with Splunk.Strong knowledge of Splunk SPL (Search Processing Language) and regular expressions.Hands-on technical experience with networking and computing system architectures, specifically the security aspects thereof.Ability to tune SIEM event correlation rules and logic to filter out security events associated with known and well-established network behavior, known false positives, or known errors.Possession of excellent verbal and written communication skills, including the ability to communicate and present technical issues to audiences with varying degrees of technical expertise.Experience as a security engineer or security analyst.Ability to build and implement event correlation rules, logic, and content in the security information and event management system in the Splunk platform.Splunk Advanced certifications (Splunk Cloud Certified Admin, Enterprise Certified Admin, Enterprise Certified Architect) and security certifications (CISSP, etc.) are a plus.Grittiness: ability to persevere and tackle hands-on problems when others fall away.