RemoteLeaf Logo
Log in Sign up

Splunk Engineer-Core Certified Consultant/ ES Accreditation Required (R-00101)

2 months, 1 week ago
Anywhere
Full-time
Senior
Security Engineer
Data Science and Analytics
Agile AWS Azure Bash Linux Machine Learning PowerShell Python Splunk
Apply Now
True Zero Technologies

True Zero Technologies

True Zero Technologies specializes in cybersecurity programs and software solutions, focusing on proactive defense and IT engineering services.

Internet Software & Services
11-50
Founded 2016
View All Jobs 8

Description

  • Develop and implement risk-based alerting (RBA) strategies within Splunk ES to reduce alert noise and prioritize high-fidelity alerts.
  • Build actionable alerts, workflow actions, risk incident rules, and risk scores for security operations.
  • Design custom dashboards and reports to visualize risk scores and provide analyst context.
  • Correlate disparate events and data sources to identify patterns of risky behavior.
  • Develop custom machine learning models and automated workflows to improve alerting and operational efficiency.
  • Create advanced security content, including dashboards, reports, alerts, risk details, health analysis, and risk suppression for RBA environments.
  • Onboard new data sources in collaboration with application and system owners.
  • Ensure proper parsing and enrichment of Windows, Linux, and cloud data for effective analysis in Splunk.
  • Correlate logs from operating systems, applications, and cloud providers into Splunk to support RBA models.

Requirements

  • Splunk Core Certified Consultant certification is required.
  • Deep technical expertise in Splunk administration, architecture, and Search Processing Language (SPL).
  • Strong understanding of security operations, threat detection, incident response, and security frameworks such as NIST RMF.
  • Proficiency in scripting languages such as Python, PowerShell, or Bash for automation and data analysis.
  • Preferred Splunk certifications include Splunk Core Certified Power User, Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect, and Splunk ES.
  • Willingness to collaborate within an agile environment.
  • Experience working with Windows, Linux, and cloud services such as AWS and Azure is preferred.
  • Experience onboarding and parsing security-relevant data sources is preferred.

Benefits

  • Competitive salary, paid twice per month.
  • Best-in-class medical coverage with 100% of medical premiums covered by True Zero.
  • Company-wide new business incentive programs.
  • Contribution incentives for white papers, blog posts, and internal webinars.
  • 3 weeks of PTO starting plus 11 paid holidays annually.
  • 401(k) program with 100% company match on the first 4%.
  • Monthly reimbursement for cell phone and home internet costs.
  • Paternity and maternity leave.
  • Investment in training and certifications to broaden and deepen technical skills.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

The Missing Link

Saviynt IAM Specialist

The Missing Link 51-250 Internet Software & Services

The Missing Link is seeking a Security Engineer - Saviynt to support large enterprise identity governance initiatives, design and deliver Saviynt-based solutions, and strengthen its growing cyber security practice.

India Full-time Mid Level Security Engineer
Active Directory Azure Cybersecurity JavaScript PowerShell REST API SAP SQL
7 hours, 4 minutes ago
EnableComp

AI Security Architect (REMOTE - United States)

EnableComp 251-1K Insurance

EnableComp is seeking a remote AI Security Architect to secure and govern its AI and machine learning initiatives within its healthcare revenue cycle management environment.

United States Full-time Senior AI Engineer Security Engineer
Azure Cybersecurity HIPAA LLM Machine Learning
7 hours, 19 minutes ago
Dropbox

Senior Infrastructure Security Engineer

Dropbox 1K-5K Internet Software & Services

Dropbox is hiring a Security Engineer to secure its AI and agentic infrastructure while helping protect products and users across cloud and on-prem environments.

Canada Full-time Lead Infrastructure Engineer Security Engineer
$152k-$206k
Bash CI/CD CrowdStrike Go Java Kubernetes Linux LLM Node.js OAuth OpenID Connect OWASP Python Ruby Rust SIEM
7 hours, 19 minutes ago
Fullscript

Staff, Security Engineer

Fullscript 251-1K Health Care Providers & Services

Fullscript is hiring a Staff Security Engineer to lead hands-on security engineering across its healthcare technology platform, shaping secure product development and protecting systems that support practitioners and patients.

United States Canada Full-time Lead Security Engineer
AWS GitHub GitLab GraphQL JavaScript Node.js Penetration Testing Ruby on Rails
7 hours, 49 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers