276 to 300 of 825 Permanent Splunk Jobs

advanced machine learning models, statistical analyses, and predictive algorithms to identify security threats and anomalies within large, complex datasets. SIEM Expertise: Design, implement, and optimize SIEM solutions, particularly in Splunk and Elastic Search environments, to capture, analyze, and report on security event data. Cyber Security Collaboration: Work closely with the security operations team to integrate data-driven insights into security … intelligence Provide mentorship and guidance to junior team members. Requirements: Experience: 10+ years of experience in data science, with at least 3 years focused on SIEM engineering, specifically with Splunk and/or Elastic Search. Cyber Security Focus: Strong understanding of cyber security principles, including threat detection, incident response, and security operations. Technical Expertise: Proficiency in Python, SQL, and relevant … data science libraries (e.g., pandas, scikit-learn, TensorFlow) and experience working with SIEM tools like Splunk and Elastic Search. Advanced Analytics & ML: Proven experience in applying machine learning techniques (anomaly detection, clustering, classification) to large-scale security data. Data Engineering: Experience in data ingestion, transformation, and optimization within SIEM systems, and familiarity with ETL processes. Problem-Solving: Excellent analytical and More ❯

to identify trends, anomalies, and identify security insights. Develop and maintain interactive dashboards and visualizations. Consolidate and extract data using tools such as SharePoint, ServiceNow, Power BI, Tableau, and Splunk to effectively communicate key security metrics. Extract and integrate data from various data sources to support the creation of dashboards and visualizations that track FISMA metrics and cybersecurity performance indicators. … modules. 1 year of experience building presentations and conducting training on FISMA metric collection requirements. 1 year of experience extracting data from multiple sources including but not limited to: Splunk, Elastic, Crystal Reports, Microsoft Power BI, Tableau, SQL Server, Oracle Business Intelligence Enterprise Edition (OBIEE), Oracle Data Visualizer, and Oracle Visual Analyzer. 2 years of experience working to execute NIST … previous client-engagement experience. DHS HQ or Component- level experience preferred . Other relevant certifications include: Microsoft Certified: Power BI Data Analyst Associate, Tableau Desktop Specialist or Certified Associate, Splunk Core Certified Power User, Splunk Certified Data Analyst, Elastic Certified Engineer, Elastic Certified Analyst Evolver Federal is an equal opportunity employer and welcomes all job seekers. It is the policy More ❯

Web/Email gateway security technologies, Security Orchestration, Automation and Response (SOAR) and cloud based platforms such as Azure, AWS, or Google • Experience with MITRE ATT&CK • Experience with Splunk or Splunk Enterprise Security Preferred Qualifications: • Ability to demonstrate interpersonal, organizational, writing, communications, and briefing skills • Ability to effectively use analytical and problem-solving skills • Provide logical use case development. More ❯

improvement of cybersecurity postures. Essential Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment. Strong hands-on expertise with SIEM tools such as Microsoft Sentinel and Splunk . Solid understanding of network protocols and infrastructure (e.g. TCP/IP , VPNs , firewalls ). Skilled in incident response and threat intelligence analysis . Familiarity with Mitre Att&ck framework … you will be at the forefront -leading incident response, improving detection mechanisms, and mentoring junior analysts. Your responsibilities will include: Analysing security incidents using advanced SIEM platforms ( Microsoft Sentinel , Splunk ). Leading incident response and driving improvements in detection and containment strategies. Tuning and maintaining detection rules, using threat frameworks like Mitre Att&ck . Collaborating with colleagues to enhance More ❯

networked devices. • Task management experience. • Excellent verbal, written and analytical skills. • Willingness to periodically travel. • CCNA or CCNP certification. Preferred Additional Skills: • Knowledge of the DCNS program. • Experience performing Splunk data analysis. • Experience developing Splunk queries. • Experience developing Cisco eem applets. • Ability to write scripts via powershell, python, etc. • Experience with RF communications. More ❯

experience as a Data Analyst. 1 year of experience with FISMA Metrics and Reporting requirements. 1 year of experience extracting data from multiple sources including but not limited to: Splunk, Elastic, Crystal Reports, Microsoft Power BI, Tableau, SQL Server, Oracle Business Intelligence Enterprise Edition (OBIEE), Oracle Data Visualizer, and Oracle Visual Analyzer. 2 years of experience working to execute NIST … as Certified Data Management Professional (CDMP) or Certified Analytics Professional (CAP). Other relevant certifications include: Microsoft Certified: Power BI Data Analyst Associate, Tableau Desktop Specialist or Certified Associate, Splunk Core Certified Power User, Splunk Certified Data Analyst, Elastic Certified Engineer, Elastic Certified Analyst Must have an Active DOD Secret clearance Preferred Qualifications 2 years of experience as a Data More ❯

Mac OS), Security Technologies (Anti-Virus, Intrusion Prevention), and Networking (Firewalls, Proxies) Interpret device and application logs from a variety of sources (e.g. Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures) to identify cause and determine next steps for containment, eradication, and recovery. Provide Advanced Support to analysts (Logs review, IP Block question).?Mentor other analysts (process question … networking, networking infrastructure, and network topologies (DMZ, VPN, WAN) and network technologies (WAF, IPS, Routers, Firewalls) Experience with commercial & opensource SIEMs, full packet capture tools, and network analysis tools (Splunk, Wireshark, SOF-ELK) Have a demonstrated knowledge of common intrusion methods and cyber-attack tactics, techniques, and procedures (TTPs). Exhibit skills using common Incident Response and Security Monitoring?applications … such as SIEM (Splunk), EDR (FireEye HX, CrowdStrike Falcon, McAfee mVision EDR.), WAF, IPS Additional Information Benefits package includes: Flexible work environment, working hybrid or in the office if you prefer. Great compensation package and discretionary bonus plan Core benefits include pension, bupa healthcare, sharesave scheme and more 25 days annual leave with 8 bank holidays and 3 volunteering days. More ❯

improvement of cybersecurity postures. Essential Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment Strong hands-on expertise with SIEM tools such as Microsoft Sentinel and Splunk Solid understanding of network protocols and infrastructure (e.g. TCP/IP , VPNs , firewalls ) Skilled in incident response and threat intelligence analysis Familiarity with Mitre Att&ck framework and advanced threat … be at the forefront of digital defenceleading incident response, improving detection mechanisms, and mentoring junior analysts. Your responsibilities will include: Analysing security incidents using advanced SIEM platforms ( Microsoft Sentinel , Splunk ) Leading incident response and driving improvements in detection and containment strategies Tuning and maintaining detection rules, using threat frameworks like Mitre Att&ck Collaborating with colleagues to enhance the overall More ❯

Web/Email gateway security technologies, Security Orchestration, Automation and Response (SOAR) and cloud based platforms such as Azure, AWS, or Google Experience with MITRE ATT&CK Experience with Splunk or Splunk Enterprise Security Full Scope Clearance Ability to demonstrate interpersonal, organizational, writing, communications, and briefing skills Ability to effectively use analytical and problem-solving skills Provide logical use case More ❯

process. - Collaborate with cross-functional teams to ensure compliance with security standards and regulatory requirements. - Automate and orchestrate security processes, including incident response and threat detection, using technologies like Splunk, Chef Automate, and others. - Stay updated with emerging DevSecOps trends, tools, and practices, and provide recommendations for implementing new technologies. - Provide mentorship and guidance to junior engineers in DevSecOps practices … Participation in a rotational on-call schedule for emergency page-outs is required. - Additional tasks to be assigned as needed. - Experience in any or all the following: - Docker Enterprise, Splunk, Chef, Chef Automate, Chef (Ruby), Puppet, Ansible, Kubernetes, Openshift - Hands-on working experience in Terraform (IaC), Jenkins groovy scripts, and Python. Minimum Requirements TCS087, T3, Band 6 EEO Statement Maximus More ❯

process. - Collaborate with cross-functional teams to ensure compliance with security standards and regulatory requirements. - Automate and orchestrate security processes, including incident response and threat detection, using technologies like Splunk, Chef Automate, and others. - Stay updated with emerging DevSecOps trends, tools, and practices, and provide recommendations for implementing new technologies. - Provide mentorship and guidance to junior engineers in DevSecOps practices … Candidates must reside within a commutable distance. - Participation in a rotational on-call schedule for emergency page-outs is required. - Experience in any or all the following: - Docker Enterprise, Splunk, Chef, Chef Automate, Chef (Ruby), Puppet, Ansible, Kubernetes, Openshift - Hands-on working experience in Terraform (IaC), Jenkins groovy scripts, and Python. - Additional tasks to be assigned as needed. Minimum Requirements More ❯

as Certified Data Management Professional (CDMP) or Certified Analytics Professional (CAP). Other relevant certifications include: Microsoft Certified: Power BI Data Analyst Associate, Tableau Desktop Specialist or Certified Associate, Splunk Core Certified Power User, Splunk Certified Data Analyst, Elastic Certified Engineer, Elastic Certified Analyst Must have an Active DOD Secret clearance. Preferred Qualifications Ability to communicate clearly and effectively via More ❯

process. - Collaborate with cross-functional teams to ensure compliance with security standards and regulatory requirements. - Automate and orchestrate security processes, including incident response and threat detection, using technologies like Splunk, Chef Automate, and others. - Stay updated with emerging DevSecOps trends, tools, and practices, and provide recommendations for implementing new technologies. - Provide mentorship and guidance to junior engineers in DevSecOps practices … Participation in a rotational on-call schedule for emergency page-outs is required. - Additional tasks to be assigned as needed. - Experience in any or all the following: - Docker Enterprise, Splunk, Chef, Chef Automate, Chef (Ruby), Puppet, Ansible, Kubernetes, Openshift - Hands-on working experience in Terraform (IaC), Jenkins groovy scripts, and Python. Minimum Requirements TCS087, T3, Band 6 EEO Statement Maximus More ❯

process. - Collaborate with cross-functional teams to ensure compliance with security standards and regulatory requirements. - Automate and orchestrate security processes, including incident response and threat detection, using technologies like Splunk, Chef Automate, and others. - Stay updated with emerging DevSecOps trends, tools, and practices, and provide recommendations for implementing new technologies. - Provide mentorship and guidance to junior engineers in DevSecOps practices … Candidates must reside within a commutable distance. - Participation in a rotational on-call schedule for emergency page-outs is required. - Experience in any or all the following: - Docker Enterprise, Splunk, Chef, Chef Automate, Chef (Ruby), Puppet, Ansible, Kubernetes, Openshift - Hands-on working experience in Terraform (IaC), Jenkins groovy scripts, and Python. - Additional tasks to be assigned as needed. Minimum Requirements More ❯

designs, and implement software and perform analyses to address these requirements. Manage multiple parallel tasks and priorities of customers and stakeholders to ensure deadlines are met Demonstrated experience with Splunk, RSA, Tenable Nessus and SELinux Demonstrated strong understanding of ports, protocols and services Assists architects and systems developers in the identification and implementation of appropriate information security functionality to ensure … Perform other duties as assigned. Preferred Qualifications: Familiarization with Sentinel One Familiarization with IDS/IPS Solutions Familiarization with MECM Perform other duties as assigned. Technical Environment: Microsoft, Linux, Splunk, Tenable, SIEM/Sentry Non-Negotiable Requirements: Active TS clearance - must be willing and able to maintain a CI polygraph. Must attain all necessary read ins for work. (This is More ❯

storage Experience with hands-on troubleshooting, customer interfacing, issue resolution, discrepancy tracking, and report generation Familiar with software frameworks used for searching, monitoring, and analyzing big data such as Splunk and Elastic Stack Experience with Linux configuration regarding Storage, Networking, Load Balancing, Memory Management, VMs, Firewalls, and System Monitoring Experience with corporate STE/STN security compliance policies, procedures, and More ❯

information and event management (SIEM), endpoint detection and response (EDR), intrusion detection systems (IDS), threat intelligence platforms (TIP), and security orchestration, automation, and response (SOAR). Specifically, experience with Splunk as a SOAR and SIEM platform is essential. Ensure the DCO system adheres to relevant security standards and compliance regulations (e.g., NIST, DoD RMF, etc.). Requirements Minimum Requirements Knowledge … security technologies. Strong understanding of networking protocols, operating systems, and security principles. Strong technical background in cybersecurity. Experience with SIEM and SOAR functions and use cases Demonstrated experience with Splunk, including configuration, use cases for SOAR, and integration with other security tools. Familiarity with cloud security concepts and technologies (e.g., AWS and Azure). Experience with hybrid cloud solutions is More ❯

fast-paced and evolving environment, we'd love to hear from you! As a Security Analyst at Trainline, you will Own the management and configuration of our SIEM platform (Splunk), ensuring its fully operational, updated, configured to best practice and providing value for money. Drive the creation of new alerts, working with the wider Security Operations team to ensure appropriate … to hear from you if you have Strong technical knowledge, this could be across the domain (Security, Networks, Infrastructure, End User Compute). Hands-on experience with SIEM platforms (Splunk, Microsoft Sentinel, Elastic, etc). Familiarity with other security tools (EDR, Vulnerability Management, Firewalls, IDS). An understanding of cloud platforms (AWS, Azure, GCP) and relevant Security principles. A desire More ❯

and make recommendations for security improvements Skills Required: • ACAS (Assured Compliance Assessment Solution) • HBSS (Host-Based Security System) • eMASS (Enterprise Mission Assurance Support Service) • RMF (Risk Management Framework) • SIEM (Splunk or LogRythm) • Strong understanding of security principles, including confidentiality, integrity, and availability • Experience with security technologies, including firewalls, intrusion detection systems, and encryption • Excellent problem-solving and analytical skills • Strong More ❯

SC-200, SC-100, AZ-500) Experience with automation (Logic Apps, Power Automate, PowerShell/Python) Exposure to compliance frameworks (NIST, ISO 27001, Cyber Essentials) Familiarity with other SIEMs (Splunk, QRadar, LogRhythm) #SOC #MicrosoftSentinel #CyberSecurityJobs #ThreatDetection #WeAreHiring #MSSP More ❯

flavors Nginx Certificate Management Clearance Required: TS/SCI with poly Minimum Education: Bachelors Minimum Years of Experience: 8 Preferred: Experience configuring: Atlassian Products Git products AI/LLM Splunk Python Scripting System Hardening MySQL/PostgresSQL Basic Networking Windows Administration More ❯

documentation. • Experience with automation using Ansible, Terraform or other similar tools DESIRED SKILLS • Experience operating in a virtual environment such as VMware vSphere/ESXi, or KVM • Experience with Splunk • Experience monitoring network activity and network traffic redirection. • Familiarity with web proxies, common web servers (i.e. Apache, NGINX), SSL certificates, and DNS records. • Experience with installing, configuring and maintaining physical More ❯

Hands-on knowledge of network protocols (VRF, MPLS VPN, IPSec VPN, NAT), software-defined networking (SDN), and RedSeal security analytics Ability to deploy, optimize, and troubleshoot cybersecurity tools like Splunk, ArcSight, Snort, or other security monitoring systems Familiar with AWS cloud technologies, Linux scripting, and automating cybersecurity workflows using Python, Go, Java, or Node Strong understanding of NIST security guidelines More ❯

cyber defense Familiarity with compliance requirements and federal cybersecurity regulations Desired Qualifications: Bachelor's degree in information security, Computer Science, or a related field (or equivalent experience) Experience with Splunk, Oracle/SQL platforms, and Python Experience integrating third-party components and automating cybersecurity operations Process improvement and automation experience RedHat Certified Systems Administrator (RHCSA) AWS Certified Cloud Practitioner AWS More ❯

TCPDump). Proficient in Linux, Windows, and TCP/IP networking. Skilled with and/or demonstrated technical aptitude with vulnerability and risk assessment tools such as Elasticsearch or Splunk SIEMs, Rapid7 Nexpose, and IDS/IPS monitoring and alerting More ❯