IT Security Specialist - Raleigh, United States - NR Consulting

    NR Consulting
    NR Consulting Raleigh, United States

    Found in: Lensa US 4 C2 - 1 week ago

    Default job background
    Description
    Job Description

    Job Title:
    IT Security Specialist

    Location:
    Dix Campus Raleigh, NC (Hybrid 2 days a week)

    Position Type:
    Contract with possible extension

    Duration: 12+ months Contract


    Short Description:
    Seeking an Information Technology (IT) professional with proven Splunk (SIEM) Security Information Event Management experience and knowledge to address Risk Management Framework (RMF) compliance


    Requiring services of an IT Security Specialist to aid county offices in the identification of gaps through risk management, and assist in the development of mitigation strategies, and to establish the target security/infrastructure architecture.


    Duties include, are not limited to:
    Experience with Splunk, network security, server and system security, and application security supporting event management tools, including SIEMs.

    Experience in configuring the data ingestion to Splunk cloud from various data sources such as Linux Logs, Application Logs and Cloud Native Service Logs.

    Detailed understanding and strong skill set in operating and working with the Splunk toolset
    Proven experience with rule and advanced logic creation in Splunk, including knowledge of thorough understanding and operational experience with Splunk Search Language
    Development of automated searches and applications using Python, Shell scripting, HTML, CSS, and regular expressions
    Experience in developing Splunk Dashboards and configuring alerts for notable events.
    Thorough understanding of Splunk's Common Information Model (CIM)
    Experience in configuring and customizing the Splunk Enterprise Security for SIEM capabilities.

    Expert level skills in assessing the current Splunk Cloud Infrastructure and ensure that it was configured using Splunk Best Practices.

    Experience in implementing Advanced Threat Analytics using Splunk Enterprise Security
    Experience with a scripting language (Bash, Python)
    Expertise with Linux and Command-line interface
    Experience deploying apps within Splunk or administrating the Splunk platform
    Excellent troubleshooting skills and strong technical learning aptitude required.
    Experience in HIPAA Privacy & Security Risk Assessments
    Splunk certifications
    #J-18808-Ljbffr