RemoteLeaf Logo
Log in Sign up

Splunk Engineer-Core Certified Consultant/ ES Accreditation Required (R-00101)

3 weeks, 6 days ago
Anywhere
Full-time
Senior
Security Engineer
Data Science and Analytics
Agile AWS Azure Bash Linux Machine Learning PowerShell Python Splunk
Apply Now
True Zero Technologies

True Zero Technologies

True Zero Technologies specializes in cybersecurity programs and software solutions, focusing on proactive defense and IT engineering services.

Internet Software & Services
11-50
Founded 2016
View All Jobs 16

Description

  • Develop and implement risk-based alerting (RBA) strategies within Splunk ES to reduce alert noise and prioritize high-fidelity alerts.
  • Build actionable alerts, workflow actions, risk incident rules, and risk scores for security operations.
  • Design custom dashboards and reports to visualize risk scores and provide analyst context.
  • Correlate disparate events and data sources to identify patterns of risky behavior.
  • Develop custom machine learning models and automated workflows to improve alerting and operational efficiency.
  • Create advanced security content, including dashboards, reports, alerts, risk details, health analysis, and risk suppression for RBA environments.
  • Onboard new data sources in collaboration with application and system owners.
  • Ensure proper parsing and enrichment of Windows, Linux, and cloud data for effective analysis in Splunk.
  • Correlate logs from operating systems, applications, and cloud providers into Splunk to support RBA models.

Requirements

  • Splunk Core Certified Consultant certification is required.
  • Deep technical expertise in Splunk administration, architecture, and Search Processing Language (SPL).
  • Strong understanding of security operations, threat detection, incident response, and security frameworks such as NIST RMF.
  • Proficiency in scripting languages such as Python, PowerShell, or Bash for automation and data analysis.
  • Preferred Splunk certifications include Splunk Core Certified Power User, Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect, and Splunk ES.
  • Willingness to collaborate within an agile environment.
  • Experience working with Windows, Linux, and cloud services such as AWS and Azure is preferred.
  • Experience onboarding and parsing security-relevant data sources is preferred.

Benefits

  • Competitive salary, paid twice per month.
  • Best-in-class medical coverage with 100% of medical premiums covered by True Zero.
  • Company-wide new business incentive programs.
  • Contribution incentives for white papers, blog posts, and internal webinars.
  • 3 weeks of PTO starting plus 11 paid holidays annually.
  • 401(k) program with 100% company match on the first 4%.
  • Monthly reimbursement for cell phone and home internet costs.
  • Paternity and maternity leave.
  • Investment in training and certifications to broaden and deepen technical skills.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Sumo Logic

Staff Threat Research Engineer

Sumo Logic 251-1K Internet Software & Services

Sumo Logic’s Threat Labs is hiring a staff-level threat researcher to turn threat intelligence and original adversary research into high-quality detections for its SIEM platform.

United States Full-time Lead Research Scientist Security Engineer
$162k-$190k
AWS Azure Cybersecurity GCP Machine Learning PowerShell Python SIEM SOC
1 hour, 32 minutes ago
Bugcrowd

Manager, Engineering (Identity and Access Management)

Bugcrowd 1K-5K Internet Software & Services

Bugcrowd is hiring a Software Engineering Manager to lead its Identity and Access Management team in building secure, scalable authentication, authorization, and identity services across the company’s product ecosystem.

United States Full-time Lead Engineering Manager Security Engineer
$138k-$213k
Agile AWS Azure Encryption GCP Go Java JWT Node.js OpenID Connect Ruby SAML Scrum
4 hours, 55 minutes ago
Arize AI

DevSecOps Engineer (TypeScript & Agentic AI)

Arize AI 51-250 IT Services

Arize AI is hiring a remote IT Support Specialist to support Mac-only endpoints, cloud systems, and compliance operations for a distributed team.

United States Full-time Junior Security Engineer Systems Administrator
Confluence GitHub JIRA TypeScript
11 hours, 31 minutes ago
Form3

Senior Cloud Security Engineer (Kubernetes)

Form3 251-1K Diversified Financial Services

Form3 is hiring a defensive security engineer to build and operate security controls for highly available multi-cloud payment systems and advise engineering teams on managing platform risk.

United Kingdom Netherlands Portugal Spain Germany Full-time Senior Cloud Engineer Security Engineer
AWS Azure CI/CD CockroachDB Flux GCP Go Helm Kubernetes Linux NATS Penetration Testing SIEM Terraform
12 hours, 5 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers