RemoteLeaf Logo
Log in Sign up

Splunk Engineer-Core Certified Consultant/ ES Accreditation Required (R-00101)

6 days, 22 hours ago
Anywhere
Full-time
Senior
Security Engineer
Data Science and Analytics
Agile AWS Azure Bash Linux Machine Learning PowerShell Python Splunk
Apply Now
True Zero Technologies

True Zero Technologies

True Zero Technologies specializes in cybersecurity programs and software solutions, focusing on proactive defense and IT engineering services.

Internet Software & Services
11-50
Founded 2016
View All Jobs 5

Description

  • Develop and implement risk-based alerting (RBA) strategies within Splunk ES to reduce alert noise and prioritize high-fidelity alerts.
  • Build actionable alerts, workflow actions, risk incident rules, and risk scores for security operations.
  • Design custom dashboards and reports to visualize risk scores and provide analyst context.
  • Correlate disparate events and data sources to identify patterns of risky behavior.
  • Develop custom machine learning models and automated workflows to improve alerting and operational efficiency.
  • Create advanced security content, including dashboards, reports, alerts, risk details, health analysis, and risk suppression for RBA environments.
  • Onboard new data sources in collaboration with application and system owners.
  • Ensure proper parsing and enrichment of Windows, Linux, and cloud data for effective analysis in Splunk.
  • Correlate logs from operating systems, applications, and cloud providers into Splunk to support RBA models.

Requirements

  • Splunk Core Certified Consultant certification is required.
  • Deep technical expertise in Splunk administration, architecture, and Search Processing Language (SPL).
  • Strong understanding of security operations, threat detection, incident response, and security frameworks such as NIST RMF.
  • Proficiency in scripting languages such as Python, PowerShell, or Bash for automation and data analysis.
  • Preferred Splunk certifications include Splunk Core Certified Power User, Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect, and Splunk ES.
  • Willingness to collaborate within an agile environment.
  • Experience working with Windows, Linux, and cloud services such as AWS and Azure is preferred.
  • Experience onboarding and parsing security-relevant data sources is preferred.

Benefits

  • Competitive salary, paid twice per month.
  • Best-in-class medical coverage with 100% of medical premiums covered by True Zero.
  • Company-wide new business incentive programs.
  • Contribution incentives for white papers, blog posts, and internal webinars.
  • 3 weeks of PTO starting plus 11 paid holidays annually.
  • 401(k) program with 100% company match on the first 4%.
  • Monthly reimbursement for cell phone and home internet costs.
  • Paternity and maternity leave.
  • Investment in training and certifications to broaden and deepen technical skills.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Ro

Sr. GRC Engineer

Ro 251-1K Health Care Providers & Services

Ro is hiring a Senior GRC Engineer to lead audit readiness and continuous compliance across its healthcare platform in a remote individual-contributor role.

United States Full-time Senior Security Engineer
$148k-$175k
AWS Azure GCP HIPAA JavaScript Looker Python
6 minutes ago
Bogaard Group International

Security Systems Solutions Engineer

Bogaard Group International 11-50 Professional Services

Netflix is hiring a fully remote Security Systems Solutions Engineer to optimize and integrate its global physical security technology ecosystem and deliver scalable solutions that improve operational efficiency and business impact.

Anywhere Full-time Mid Level Security Engineer
$110k-$130k
21 minutes ago
Coalfire

Security Engineer (SPLUNK)

Coalfire 251-1K Internet Software & Services

Coalfire is hiring a remote Security Engineer focused on Splunk and other SIEM platforms to support cloud-based continuous monitoring, compliance, and incident detection for highly regulated client environments.

United States Full-time Senior Security Engineer
$78k-$135k
Agile Ansible AWS Azure CrowdStrike GCP GitHub GitLab HIPAA Microservices Serverless SIEM Splunk Terraform TLS
21 minutes ago
Bitly

Senior Cyber Engineer, Security Endpoint (SD/TX/DC/Remote) (R4653)

Bitly 51-250 Internet Software & Services

Shield AI is hiring a Senior Cyber Engineer for endpoint security to design, enforce, and operate the systems that keep company endpoints compliant and secure across Windows, macOS, and Linux environments.

United States Full-time Senior Security Engineer
$110k-$168k
Ansible Bash Cybersecurity Linux macOS PowerShell Python Terraform
21 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers