- Serve as lead engineer for Splunk SIEM design, related components, and the confidentiality, integrity, and availability (CIA) of logs.
- Subject matter expert for onboarding Splunk SIEM
- Development of Splunk reports, dashboards, and alerts
- Experience in a large enterprise environment, of analyzing security event data for attack patterns and understanding attacker tactics.
- Experience in creating automated log correlations in a SIEM to identify anomalous and potentially malicious behavior.
- Understanding of monitoring devices such as firewalls, network and host-based intrusion detection systems, web applications, AV, WAF, Proxy and operating system logs
- Create technical documentation around the content deployed to the SIEM.
- Ability to partner with anomaly detection and incident responders to improve data quality and reduce false positives.
- Ability to recognize patterns and inconsistencies that could indicate complex cyber-attacks.
- Experience in developing SIEM correlation rules to detect new threats beyond current capabilities.
- Create rules for compliance and audit requirements and create and manage Watch Lists for current threats.
- Manage Splunk SIEM user accounts (create, delete, modify, etc.).
- Add /Remove log sources. Troubleshoot issues with log sources.
- Support SOC automation initiatives leveraging playbooks, while also using human analysis as needed.
- Assist with designing and documenting work processes within the SOC.
- Manage product enhancement/feature requests with vendors as needed.
- Automation or Scripting skills, i.e. Ansible, Lambda, SOAR
- SIEM tools, i.e. Splunk
- Responsible for mentoring and training of less experienced Splunk SIEM Engineers.
- Perform analysis of log files
- Experience with Endpoint Detection and Response (EDR) tools.
- Able to create, modify, update, and maintain Python and PowerShell scripts that enhance endpoint detection capabilities.
- Participate in 24x7 on-call rotation.
- Perform related duties as requested.
- Bachelor s degree in Information Technology, Computer Science, or related field and 6 years' experience in information technology or related field within the last 10 years
- Preference will be given to those with degrees in Computer Science, Information Technology, Mathematics, Engineering (various disciplines), and other technology-focused areas.
- Must have CISSP or ability to obtain within first six months of employment.
- 5+ years of experience with Splunk SIEM and ES
- 6 + years of technical experience working with security solutions and conducting security operations.
- 6+ years of network security experience and reviewing security tools and solutions and making recommendations on utilization and strategy.
- 6 + years of experience with network protocols, data flows and attacks within an IP environment
- 5+ years of experience in building configurations for security devices and building an automated process to support large-scale deployment.
- 5+ years of experience with managing security controls, to include defining policies and administering devices such as Cisco and Palo Alto networks firewalls, IDS/IPS platforms, DLP devices, e-mail/web filtering solutions.
- 2+ years programming/scripting experience – one or more of: Perl, PHP, Python, PowerShell
- Medical, dental, vision and life insurance
- Retirement savings – 401(k) plan with generous company matching contributions (up to 6%), financial advisory services, potential company discretionary contribution, and a broad investment lineup
- Tuition reimbursement up to $5,250/year
- Business-casual environment that includes the option to wear jeans
- Generous paid time off upon hire – including a paid time off program plus ten paid company holidays and three floating holidays each calendar year
- Paid volunteer time — 16 hours per calendar year
- Leave of absence programs – including paid parental leave, paid short- and long-term disability, and Family and Medical Leave (FMLA)
- Business Resource Groups (BRGs) - internal networks that rally around common interest, experiences and identities such as race, ethnicity, gender, ability, military status and sexual orientation. BRGs play a vital role in educating and engaging our people and advancing our business priorities.
-
Security Operations Engineer
3 weeks ago
MicroData Systems, Inc. Overland Park, United StatesJob Description · Job DescriptionSecurity Operations Automation Engineer · Overland Park, KS - Hybrid (60% on-site) · Strong SOC background (Sr. Analyst, Tier III, IR, SOC Leader type experience). · Preferred: SOC architecture, multiple SOC roles, design/advisory roles that are n ...
-
Lead Electronic Security Engineer, CPP
3 weeks ago
Black & Veatch Overland Park, United States Full timeTogether, we own our company, our future, and our shared success. · As an employee-owned company, our people are Black & Veatch. We put them at the center of everything we do and empower them to grow, explore new possibilities and use their diverse talents and perspectives to s ...
-
Information Security Engineer
3 weeks ago
Mariner Wealth Advisors Leawood, United StatesOverview: · If you are looking to build your career with a firm that puts the client first, then Mariner is the right firm for you. We actively nurture the next generation of professionals, give back to the community and focus on building a diverse culture where everyone genuine ...
-
Cloud Security Engineer
1 week ago
Saxon Global Missouri, United StatesTitle: Cloud Security Engineers · Location: Memphis or St. Louis · Duration: Direct Hire · Discriptions: · The Cloud Security Engineer is responsible for designing, implementing, and maintaining security · measures within cloud computing environments. They ensure the confidentia ...
-
Network Security Engineer
1 week ago
Akkodis Missouri, United StatesAkkodis is seeking Network Security Engineer for a 6 Month Contract-Hire with a client located in Remote. · Pay Range - $55/hr.; The salary may be negotiable based on experience, education, geographic location, and other factors. · What you'll be responsible for: · Performs syst ...
-
Information Security Engineer
3 weeks ago
Veracity Consulting Inc Kansas City, United StatesJob Description · Veracity is a business and technology consultancy that specializes in optimizing companies' business performance and navigating change. Our experienced team of strategic thinkers, solution experts, and problem solvers work flexibly and collaboratively with our c ...
-
Senior Information Security Engineer
3 weeks ago
Kansas Action for Children Lenexa, United Statesat Jack Henry & Associates, Inc. in Lenexa, Kansas, United States · Job Description · General information · JobID · 14395 · Team · Information Technology · Working Time · Full-Time · Position Type · Regular · Travel Requirements · 5% · Workplace Type · Hybrid · Preferred Locatio ...
-
Security Engineer
1 week ago
Lockton Companies Kansas City, United StatesAt Lockton, we're passionate about helping our people achieve their ultimate potential. Our people are curious, action-oriented and always striving to make ourselves and those around us better. We're active listeners working to ensure understanding and problem solvers developing ...
-
Security Engineer
1 week ago
Advantage Tech Kansas City, United StatesAdvantage Techis looking for an experienced Security Engineer to play a critical role in protecting the organization's computer networks and systems. This position requires a thorough understanding of traditional network security measures and cloud-based protections, including ex ...
-
Security Engineer
1 week ago
Advantage Tech Kansas City, United StatesAdvantage Tech is looking for an experienced Security Engineer to play a critical role in protecting the organization's computer networks and systems. This position requires a thorough understanding of traditional network security measures and cloud-based protections, including e ...
-
Information Security Software Engineer
3 days ago
Federal Reserve Bank of Kansas City Kansas City, United StatesCompanyFederal Reserve Bank of Kansas City As a part of the nation's central bank, the Federal Reserve Bank of Kansas City supports a stable financial system. We work across diverse communities throughout our region and the nation to promote trust in our economy, the payments sys ...
-
Information Security Software Engineer
3 weeks ago
Federal Reserve System Kansas City, United StatesCompany · Federal Reserve Bank of Kansas City · As a part of the nation's central bank, the Federal Reserve Bank of Kansas City supports a stable financial system. We work across diverse communities throughout our region and the nation to promote trust in our economy, the payme ...
-
TEKsystems c/o Allegis Group San Francisco, United States PermanentTop Skills' Details · a Cloud Network Engineer focused on enabling secure cloud infrastructure operations for worldwide customers through engineering, design, planning, implementation, operation, and maintenance of networking infrastructure in hybrid-cloud and fully native cloud ...
-
Marketing Manager
2 weeks ago
Eclipse Innovations Leawood, United StatesAre you a creative and communicative individual with experience in the marketing field? Then we have the perfect opportunity for you in Leawood. · Our renowned client in Dresden, a modern company in the technology and electronics industry, is offering an exciting perspective. · W ...
-
Network Security Engineer
1 week ago
Apex Systems Kansas City, United StatesApex Systems is looking for a Network Security Engineer for a local Kansas City client. This candidate can sit remote in the United States or be local to the Kansas City area. The preference would be for the candidate to sit in Kansas City and we willing to go onsite a few times ...
-
Network Security Engineer
3 weeks ago
Apex Systems Kansas City, United StatesApex Systems is looking for a Network Security Engineer for a local Kansas City client. This candidate can sit remote in the United States or be local to the Kansas City area. The preference would be for the candidate to sit in Kansas City and we willing to go onsite a few times ...
-
Mission Services LLC (MSI) Kansas City, United StatesImplement, configure, analyze and support the internal and external data communications systems which include the local area network (LAN) and wide area network (WAN). · Configured, managed and maintained functionality of the Cisco Routers/Switches. · Install and configure networ ...
-
Highmark Health Missouri, United States Full timeDescription · : JOB SUMMARY · The Identity & Access Management Senior Security Engineer is responsible for acting as resource, leader, and peer coach with other engineers in the development, testing, implementation, and integration of Identity and Access Management systems an ...
-
IT-Security Engineer
1 day ago
Crimson Solutions Louisburg, United StatesWe do what many others don't in infrastructures - we make them secure · Our consultants create security policies, our analysts uncover vulnerabilities and monitor infrastructures, and our engineers implement measures together with our clients. · We are looking for an experienced ...
-
Synchrony Kansas City, United StatesJob Description · Role Summary/Purpose: · The VP, Security Engineering SRE Operations Leader will oversee and optimize the reliability, availability, and performance of our security technology stack. You will be responsible for leading a team that provides operational 24x7 suppo ...
Senior SIEM Security Engineer - Overland Park, United States - Empower Retirement
Description
Grow your career with a growing organization
Whether they're helping people reach their long-term financial goals or providing personal wealth management strategies, every associate contributes to changing the lives of those we serve for the better. When it comes to job satisfaction, that's hard to beat. And from a personal satisfaction perspective, you'll enjoy the freedom to support causes that matter to you and experience a truly inclusive work environment. Your future starts now.
Empower is currently looking to add a new Senior Security Analyst to our SIEM and Detection Engineering team. This position is technical in nature, and we are looking for a self-motivated professional who is driven to succeed in a fast-paced environment. The Sr. Security Analyst will be part of a team of individuals that are responsible for developing, reviewing, and updating Empower SIEM detections and helping drive key components of the SIEM and Detection engineering program. Day-to-day responsibilities of collaboration, research, and testing; working closely with the Cybersecurity - Threat Intel and Response teams to leverage threat intelligence sources, identify new threats in the wild and verify the organization's security posture by simulation and testing, leading to development of new SIEM detections. Together with other engineers and incident response specialists, you will research attacker techniques, test vectors, apply cyber threat intelligence analysis and make recommendations to prioritize detection engineering operations for your team.
What you will do
What you will bring
What will set you apart
***Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment visa at this time, including CPT/OPT.***
What we offer you
We offer an array of diverse and inclusive benefits regardless of where you are in your career. We believe that providing our employees with the means to lead healthy balanced lives results in the best possible work performance.
Base Salary Range
$120, $174,825.00The salary range above shows the typical minimum to maximum base salary range for this position in the location listed. Non-sales positions have the opportunity to participate in a bonus program. Sales positions are eligible for sales incentives, and in some instances a bonus plan, whereby total compensation may far exceed base salary depending on individual performance. Actual compensation offered may vary from posted hiring range based upon geographic location, work experience, education, licensure requirements and/or skill level and will be finalized at the time of offer.
Equal opportunity employer Drug-free workplace
We are an equal opportunity employer with a commitment to diversity. All individuals, regardless of personal characteristics, are encouraged to apply. All qualified applicants will receive consideration for employment without regard to age (40 and over), race, color, national origin, ancestry, sex, sexual orientation, gender, gender identity, gender expression, marital status, pregnancy, religion, physical or mental disability, military or veteran status, genetic information, or any other status protected by applicable state or local law.
***For remote and hybrid positions you will be required to provide reliable high-speed internet with a wired connection as well as a place in your home to work with limited disruption. You must have reliable connectivity from an internet service provider that is fiber, cable or DSL internet. Other necessary computer equipment, will be provided. You may be required to work in the office if you do not have an adequate home work environment and the required internet connection.***
Job Posting End Date at 12:01 am on:
Want the latest money news and views shaping how we live, work and play? Sign up for Empower's and check out .
&v=024){kind=logo}
