and Dynamic) Threat Hunting and Threat Intelligence (MITRE ATT&CK) Penetration Testing Security Automation (SOAR) It would help if you had experience with the following: SIEM tools (Microsoft Sentinel, Splunk, ELK, Siemplify) Vulnerability Management (Qualys, Nessus, Nexpose) Anti-Malware/EDR Software (Carbon Black, Microsoft Defender ATP, FireEye, CrowdStrike) Programming (Python, or other languages) What you can expect from us More ❯
Linthicum Heights, Maryland, United States Hybrid / WFH Options
Artech Information Systems
of SAN storage systems. • Experience with Solaris OS. • Experience with Windows & Linux Operating systems that support Security Engineering tools. • Knowledge of environmental monitoring tools (HBSS/Solar Winds/Splunk). • Client experience with current version. • Rudimentary scripting experience. • Experience with the creation and deployment of system images in an enterprise environment. • Experience with Certification & Accreditation process. • DoD 8570 Certification More ❯
documentation skills Ability to learn new technologies quickly Ability to work independently and be self-directed Bachelor's degree in Computer Science or related Experience with big data analytics: Splunk, ELK, Hive, Redshift, etc. (nice to have) In-depth knowledge of streaming back-ends and formats (nice to have) Experience working with Smart/Digital TV (HDMI), Setup Boxes, Wi More ❯
Infrastructure Architects (DV Clearance active) Job Type: Contract Location: Basingstoke Daily Rate: £600pd inside IR35 Mandatory: DV CLEARANCE active - sole British nationality We are seeking an experienced Infrastructure Architect to join our dynamic team in Defence. This role involves creating More ❯
Description A SECURITY CLEARANCE AND POLYGRAPH ARE REQUIRED Support High Performance Computing (HPC) server-class platforms, network devices, server interconnects, mass storage systems and supporting infrastructure services. One of the critical cornerstones of the IT environment is the closely coupled More ❯
A client of Innova Solutions is immediately hiring a Splunk Systems Administrator. Position Type: Fulltime - Contract Location: Newport News, VA 23607 Duration: 12 Months The ideal candidate will have: Maintains smooth operation of multi-user computer systems, including coordi More ❯
seamless transitions and optimizing SOC operations to maintain high standards of security monitoring throughout the process. Interested? Apply now! Responsibilities: Support the completion of a health check of the Splunk environment to ensure the foundations are stable and the architecture is designed for future growth. Implement recommendations as agreed with the customer based on their priorities and dependencies. Support SOC … analysts with tuning and suppressing alerts to reach a manageable state. Support SOC analysts with refinement and mapping of 200 use cases. Skills/Must have: Certified and experienced Splunk Core Consultant Certified and experienced Splunk Enterprise Security Admin Experience working in SOCs in the Defence sector Benefits: Outside IR35 Remote Salary: £600 Per Day Outside IR35 More ❯
Job Responsibilities As a SIEM Engineer (ArcSight & Splunk), you will be: Responsible for design, implementation and support ArcSight or Splunk core components, including ESM, Loggers, Smart Connectors, Indexers, Forwarders, Search Heads, and Cluster Managers Responsible for configuration and administration of ArcSight or Splunk ingestion and forwarding for new and existing applications and data Responsible for fix ArcSight or Splunk dataflow … Systems, related field, or equivalent experience. A minimum of 8 years of related cybersecurity experience. A minimum of at least 4 years of proven ability with either ArcSight or Splunk Experience in design, implementation, and support of ArcSight or Splunk core components, including ESM, Loggers, Smart Connectors, Indexers, Forwarders, Search Heads, and Cluster Managers Experience with configuration and administration of … ArcSight or Splunk ingestion and forwarding for new and existing applications and data Experience with fixing ArcSight or Splunk dataflow issues between the various event flow components Experience configuring and deploying data collection for a variety of operating systems and networking platforms Experience creating Dashboards and Analytics within SIEM tools Experience working with monitoring systems supporting auditing, incident response, and More ❯
Clearance Level: Top Secret/SCI - Full Scope Polygraph Work Arrangement: On-site Job Location: Annapolis Junction MD Salary: 130K-140K Background Continuously monitor the availability and performance of Splunk, SCCM, Micro Focus, and 1E Identify, analyze, and resolve issues related to these enterprise tools in a timely manner Manage and execute patching activities across the enterprise to address security … maintain comprehensive documentation for monitoring, patching, and performance processes Requirements B.A. + 10 yrs Experience with monitoring tools and performance tuning Proven experience managing and supporting enterprise tools, including Splunk, SCCM, Micro Focus, and 1E Strong knowledge of cloud security principles and best practices Strong problem-solving skills and the ability to troubleshoot complex technical issues Patch management and problem … solving critical thinking Preferred Splunk, SCCM, Micro Focus, DoD 8570, DoD 8570 CE Certification and CompTIA Security+ CE Experience with scripting and automation (e.g., PowerShell). and mission accomplishment More ❯
Required: • Experience with Linux/Redhat v8/v9 • Advanced Experience in Splunk (Frontend & Backend)• Experience in the buildout and sustainment of Splunk• Experience in writing Python scripts • Experience in ETL • Ability to apply systems engineering principles • Experience with data analysis and knowledge of data processing• IAT Level 2 Certification Desired: • Experience working with MongoDB• Relational data bases (MySQL, Postgres More ❯
Region/DC Metropolitan area WORK SCHEDULE/HOURS: 40 hrs/week JOB DUTIES: Create and maintain dashboards and reports for all necessary cybersecurity functions utilizing CDM dashboard, Splunk, Crystal Reports, PowerBI or other authorized platforms. Create a draft and final cybersecurity report by coordinating, consolidating and collecting the data and reports from multiple sources (for example, SERR, Cyber … Region/DC Metropolitan area WORK SCHEDULE/HOURS: 40 hrs/week JOB DUTIES: Create and maintain dashboards and reports for all necessary cybersecurity functions utilizing CDM dashboard, Splunk, Crystal Reports, PowerBI or other authorized platforms. Create a draft and final cybersecurity report by coordinating, consolidating and collecting the data and reports from multiple sources (for example, SERR, Cyber More ❯
security. Whether you’re an experienced analyst or an ambitious junior ready to move up, this is your opportunity to work with leading SIEM platforms like Microsoft Sentinel and Splunk in a dynamic, threat-rich environment that never stands still. What You’ll Be Doing Monitoring and triaging alerts across secure environments Investigating complex threats using logs, network traffic, and … attackers by integrating evolving threat intel What We’re Looking For Proven hands-on experience in a SOC environment Strong working knowledge of SIEM tools, especially Microsoft Sentinel or Splunk Solid understanding of core network protocols and modern security architecture DV clearance eligibility (must have lived in the UK for 10+ years) Aa a SOC analyst you’ll be on More ❯
busy SOC with a tech-first approach. The team is on the cusp of continued growth, and we are looking for leaders to drive forward. Knowledge of Microsoft Sentinel, Splunk, and MISP Threat Sharing would be a significant advantage. This role is based at our head office in Hemel Hempstead or Farnborough and involves a shift pattern with 12-hour … audiences and improving their content. Updating security incident documentation, including reports, analysis, and mitigation strategies. Qualifications and experience: Experience working in a Security Operations Centre. Managing Microsoft Sentinel and Splunk implementations. Knowledge of the Mitre Att&ck Framework. Understanding of client-server applications, web applications, databases, firewalls, VPNs, and AntiVirus products. Expertise in log data analysis and intrusion detection systems. More ❯
to machine learning or user behavior analytics in a security context Experience with cloud (AWS, Azure) and SaaS (M365, Salesforce) platforms Familiarity with tools such as BigID, Microsoft Purview, Splunk, or ALTR Cyber Security Principal Analyst duties: Evaluate third-party vendors and their ability to meet security standards. Act as a technical advisor during incident response and investigations. Contribute to More ❯
assessed and improved automation systems for reliability, performance, and scalability to meet evolving security and operational needs. Hands-on experience with security automation and cloud tools such as Sentinel, Splunk SOAR, Palo Alto XSOAR, and platforms like Azure, AWS, and GCP to support SOC and detection engineering efforts. More ❯
assessed and improved automation systems for reliability, performance, and scalability to meet evolving security and operational needs. Hands-on experience with security automation and cloud tools such as Sentinel, Splunk SOAR, Palo Alto XSOAR, and platforms like Azure, AWS, and GCP to support SOC and detection engineering efforts. More ❯
Birmingham, West Midlands, West Midlands (County), United Kingdom
Spinks
experience in AWS Data Engineering, including tools such as Python, Snowflake & Terraform. Previous experience working with Data Warehousing, Data Lakes or Data Meshes. Experience with logging tools such as Splunk or Elastic) Experience with databases such as NoSQL or SQL. Benefits: Competitive salary Pension scheme, 25 days holiday plus bank Flexible working Other perks like personal wellbeing support and professional More ❯
on emerging threats and vulnerabilities. Qualifications: - Bachelor's degree in Computer Science, Engineering, or a related field - 5+ years of technology experience, 3+ in cyber security - Experience with ePO, Splunk, ACAS, WSUS, Active Diectory GPO's and STIG/SCAP - Active TS/SCI - Travel as needed More ❯
with specialized communications solutions Experience deploying systems Preferred Experience with programming languages such as Python, Java, C/C++, etc. Familiarity with network and log analysis tools, such as Splunk, LogRhythm, Wireshark Exposure to AL/ML technologies to analyze network protocols and communications Experience in VPN set up; reviewing popular services. Also, experience in two-factor authentication Experience in More ❯
possess a degree Linux system administration background Knowledge of physical and virtual servers (rack/stack, network, build, deploy, etc.) and log aggregation applications Preferred Skills in Elasticsearch/Splunk, Syslog/NxLog, Nagios or other similar monitoring applications Scripting experience (Python/Perl) CompTIA Security+ certification is required More ❯
experience (in order to support the underlying operating systems that the KG software runs on) Vine KG Tool Experience and/or the GENOME KG Tool Experience Preferred Qualifications: Splunk Networking to assist in troubleshooting connectivity issues between the KG software and the KGs themselves. SQL Experience Security Clearance Required: TS/SCI with Poly About Avid Technology Professionals Avid More ❯
proactively prevent failures REQUIREMENTS: 3+ years supporting incident, problem, and change management in federal environments 3+ years with monitoring tools such as IBM Netcool, AppDynamics, HP Ops Manager, or Splunk 3+ years using incident tools such as ServiceNow or BMC Remedy 3+ years working in large-scale monitoring environments Hands-on experience with Java App Servers, VMware, Oracle, Unix/ More ❯
Directory, SCAP, and STIG compliance Knowledge of the following will be extremely beneficial: Windows Server 2016/2019, Windows 10/11, DNS, Group Policy, WSUS, Exchange, SharePoint, Nessus, Splunk and various software products such as Adobe, Skype, etc. What you'll experience: Technologies that aren't just top-notch, they're often top-secret A team of bold thinkers More ❯
implementation of service mapping to establish clear relationships between business services and underlying infrastructure • Identify and build business applications from discovered/ingested Asset data and mature a ServiceNow-Splunk integration for enhanced security monitoring and incident response. • Configure and enhance ServiceNow SIR and SecOps modules to support CSOC incident response and Vulnerability Management capability. • Develop and maintain documentation for More ❯
