- Provide 24x7x365 security monitoring for multiple clients while working closely with DevOps and product teams
- Work across a myriad of technology stacks in leading cloud providers like AWS, Azure, and GCP
- Analyze security events using logs and open-source knowledge to determine legitimate or false positive nature
- Maintain a record of security monitoring activities via case management and ticketing technologies
- Administer and monitor intrusion detection, file integrity, endpoint protection, log management and SIEM solutions
- Integrate security tools using a wide variety of data sources that use various protocols
- Design, build, and maintain environment-specific rules, alerts, and dashboards in SIEM tooling via custom queries
- Consult with clients to customize and configure SIEM tools in order to meet security and compliance requirements
- Communicate alerts to team members and clients related to security anomalies in the environment
- Apply technical writing skills to create formal documentation such as analytical reports and briefings
- Develop and maintain standard operating procedures and training materials
- Participate in on-call rotations as needed to support client operational needs that may lay outside of business hours
- Conduct testing and data reviews to evaluate the effectiveness of current security and operational measures
- Assist with administration and maintenance of SIEM, Log Management, and Data Analytical Platform
- Conduct System Health Checks on managed technologies and provide recommendations on performance improvements.
- Schedule and run regular technical changes such as version updates, security patches, major software releases following best practices for change management policies and procedures
- Aiding customer-initiated requests such as Log Source configuration, App installation, Data Parsing, Use Case Development, and Troubleshoot complex issues for managed technologies.
- Create and maintain standard operating procedures, technical documents, and troubleshooting guidelines of security solutions.
- Configure and troubleshoot managed security devices
- Develop technical solutions to automate repeatable tasks
- Opening and following up on tickets and customer requests with 3rd party vendors
- Utilize tools and analytical skills to investigate the root cause of issues across the technologies
- Areas of responsibility will include onboarding new data sources, developing alerting, developing run books, conducting security investigations, responding to incidents, and deploying security solutions in a rapidly growing environment
- BS or above in related Information Technology field or equivalent combination of education and experience
- 1-2 years experience in 24x7x365 production security operations
- 1-2 years experience administering and operating security tooling such as SIEM, IDS, and endpoint protection
- 2+ years of hands on technical experience supporting cloud operations and automation in Azure, AWS, and/or GCP
- Experience with ITSM solutions such as Jira and ServiceNow
- Certifications such as Splunk Enterprise Certified Admin/Splunk Power User or ELK Certification.
- Experience configuring, implementing, and supporting Splunk Enterprise components deployed in the Cloud
- Understanding of regular expression and query languages
- Practical experience in administration of Linux infrastructure.
- Experience in Information Security with a focus on incident response and security engineering
- Experience analyzing events or incidents to triage the issue, find the root cause through log and forensic analysis, and determine security vulnerabilities, attacker exploit techniques, and methods for their remediation.
- Experience developing playbooks, run books, troubleshoot tech nical issues, and recognize and identify patterns
- Experience with AWS and vendor SaaS Integrations
- Experience with automation, building security, and/or deploying tools
- Excellent communication, organizational, and problem-solving skills in a dynamic environment
- Effective documentation skills, to include technical diagrams and written descriptions
- Ability to work independently and as part of a team with professional attitude and demeanor
- Previous experience in a professional services organization
- Previous experience supporting 24x7x365 security operations for a SaaS vendor.
-
Information Systems Security Engineer
11 hours ago
CGI Technologies and Solutions, Inc. Westminster, United StatesInformation Systems Security Engineer · Category: Software Development/ Engineering · Main location: United States, Colorado, Westminster · Position ID: J · Employment Type: Full Time · Position Description: · As the IT Security Engineer, you will work with a Team to maintain th ...
-
Cybersecurity Engineer III
19 hours ago
Amentum Westminster, United StatesThe Cybersecurity Engineer III will plan, develop, and implement administrative or technical solutions to increase security and defend against hacking, malware and ransomware, insider threats, and other types of malicious activity. The Cybersecurity Engineer III will oversee moni ...
-
Tri-State Generation and Transmission Association, Inc. Westminster, United StatesJob Description: · Responsible for the data/communications operating environments used within the Transmission OT networks at the Primary and Backup Control Centers. Ensures proposed changes to the Transmission OT environment are appropriate for the Transmission OT network and co ...
-
Senior Security Engineer
1 week ago
Magnite Broomfield, United States Full timeSenior Security Engineer · Location: Los Angeles preferred · Hybrid Schedule (M/F remote, T/W/TH in-office) · At Magnite, we cultivate an environment of continuous growth and collaboration. Our work impacts what millions of people read, watch, and buy, and we're looking for peopl ...
-
SIEM/SOAR Python Engineer
6 days ago
Noblesoft Solutions Denver, United StatesSIEM/SOAR Python Engineer · Work with stakeholders directly to build, design, deliver, re-write, and maintain efficient, reusable, and reliable security automations using Splunk SOAR. This role is highly detail oriented and will require hands-on knowledge of programming languages ...
-
SIEM/SOAR Python Engineer
4 days ago
American Unit Denver, United StatesSIEM/SOAR Python Engineer · Denver, CO or Chicago, IL preferred - then Addison, TX and Charlotte, NC (3x a week onsite) · Contract/contract to hire and Contract Length: 18 Months · 2 roles open · Candidates MUST have DEVELOPMENT experience with SOAR, Splunk, and Python. SOAR is a ...
-
SIEM/SOAR Python Engineer(Onsite)-W2
8 hours ago
SmartIPlace Denver, United StatesJob Description · Job DescriptionTitle: SIEM/SOAR Python Engineer · Locations: Denver, CO or Chicago, IL, Addison, TX OR Charlotte, NC (3x a week onsite) · Duration: 18 months · Visa: USC or GC · 2 roles open · *Notes to find quality candidates: · Looking for someone that can hel ...
-
SIEM/SOAR Python Engineer
1 week ago
American Unit Denver, United StatesSIEM/SOAR Python Engineer · Denver, CO or Chicago, IL preferred · then Addison, TX and Charlotte, NC (3x a week onsite) · Contract/contract to hire and Contract Length: 18 Months · 2 roles open · Candidates MUST have DEVELOPMENT experience with SOAR, Splunk, and Python. SOAR i ...
-
SIEM/SOAR Python Engineer
1 week ago
Noblesoft Solutions Denver, United StatesSIEM/SOAR Python Engineer · Interested in this role You can find all the relevant information in the description below. · Work with stakeholders directly to build, design, deliver, re-write, and maintain efficient, reusable, and reliable security automations using Splunk SOAR. ...
-
Sr. Developer
3 hours ago
Talascend Denver, United StatesTalascend is seeking a professional, skilled individual for our Sr. Developer position located in Denver, CO. · Responsibilities: Cable Network Service provisioning, Device Config, Service activation workflow automation · Java Microservices, Splunk, BPMN Workflow Engines like C ...
-
DOCSIS QA engineer
4 days ago
ClifyX Denver, United StatesInfosys/Charter - 4 position- DOCSIS QA engineer - Denver CO - Day 1 onsite Must (hybrid will work) · 4 positions. Can you send me based on below criteria. Need to close quickly. · QA engineer with DOCSIS / Cable Modem / CPE · Denver CO - Day 1 onsite Must (hybrid will work) · R ...
-
DevOps Lead
3 hours ago
eTeam Denver, United StatesJOB PURPOSE: · - We need a resource to perform the role of a production support engineer with experience of DevOps Tools, Unix Shell/Perl scripting, AWS Knowledge and hands-on experience in handling Tier 1 and Tier 2 level responsibilities ACADEMIC QUALIFICATIONS, YEARS OF REL ...
-
Cloud Engineer
1 week ago
Ascendion Denver, United StatesAbout Ascendion · Ascendion is a full-service digital engineering solutions company. We make and manage software platforms and products that power growth and deliver captivating experiences to consumers and employees. Our engineering, cloud, data, experience design, and talent so ...
-
Red Hat Linux Engineer
5 days ago
TEKsystems Denver, CO, United StatesDescription: · • Develop and maintain automation scripts using Ansible and Python to streamline system administration tasks and improve operational efficiency. · • Develop automation for RHEL LEAPP upgrades, ensuring smooth transitions and minimal disruption to the platform. · • ...
-
Performance Tester
2 days ago
Tek Ninjas Denver, United States· Load and Performance Tester · Performance Test Engineer with strong experience in Performance Testing Java based applications with use of performance testing tools like LoadRunner, JMeter and Performance Monitoring tools like AppD, Datadog, Instana, JConsole/JVisualVm, Splunk ...
-
Architect, Service Delivery Manager
5 days ago
Western Union Denver, United StatesArchitect, Service Delivery Manager (Western Union, LLC, Denver, CO) · Architect solutions for performance improvement to enable 99.99% system stability. Review, design, and work toward building best alternative solutions. Suggest the best practices in end-to-end systems. Perfor ...
-
Senior Platform Engineer
3 hours ago
Audacy Denver, United StatesOverview · Audacy is looking for an innovative, results-oriented, and passionate Platform Engineer. You will be working with a team of like-minded engineers to design, develop and implement cutting-edge consumer desktop, web, and mobile applications. We are building an infrastruc ...
-
Infrastructure Security Engineer
11 hours ago
Ping Identity Denver, United StatesAbout Ping Identity: At Ping Identity, we believe in making digital experiences both secure and seamless for all users, without compromise. We call this digital freedom. And it's not just something we provide our customers. It's something that inspires our company. People don't c ...
-
SOAR Domain Expert
3 weeks ago
Bank of America Denver, United States Full timeJob Description: · At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day. ...
-
Architect, Service Delivery Manager
5 days ago
Western Union Denver, United States**Architect, Service Delivery Manager (Western Union, LLC, Denver, CO)** · Architect solutions for performance improvement to enable 99.99% system stability. Review, design, and work toward building best alternative solutions. Suggest the best practices in end-to-end systems. Per ...
Junior Splunk Engineer - Westminster, United States - Coalfire
Description
Coalfire SystemsCoalfire is an EEO employer. We celebrate diversity and are committed to respecting one another, embracing individual differences, and creating an inclusive environment for all employees.
About Coalfire Coalfire is the cybersecurity and cloud consultancy that helps private and public sector organizations move to cloud and avert threats, close gaps, and effectively manage risk. Our professionals are among the most talented in the industry, and each and every day, they strive to provide the unbiased assessments, advice, and innovative solutions that help our clients meet their specific challenges and build long-term strategies to protect their organizations. For nearly 20 years, we've been on the cutting-edge of one of the world's most important industries - and we're committed to making the world a safer place by solving our clients' toughest security challenges.
Position Summary As Vulnerability Management I Engineer at Coalfire within our Managed Services group, you will be a self-starter, passionate about cloud security, and thrive on problem-solving. You will provide strategy, leadership, and operational support of Vulnerability Management processes for clients with regulatory compliance requirements. The Managed Services team is responsible for identifying, assessing, and managing threats, vulnerabilities, and associated risks to clients' information assets and resources. You will work within major public clouds and best-of-breed tools, utilizing your technical abilities to monitor vulnerabilities and recommend remediation or resolution.
What You'll Do
Bonus Points
Why you'll want to join us
Please see job description
PI