Splunk Security Engineer

Date Posted:
2022-09-14-07:00
Country:
United States of America
Location:
GA219: 550 Rock Hill Drive Atlanta 550 Rock Hill Drive , Atlanta, GA, 30349 USA
Raytheon Technologies is seeking a Security Engineer to play a key role in supporting a statewide program providing cyber assessment services and management that will protect 20+ affiliates from growing and evolving cyber threats. The engineering effort will focus on cloud security, SIEM and log management, and endpoint detection/response protecting customers from the ever growing and evolving cyber threats. This person will also work with customers to ensure the organization's compliance standards are met and maintained while also driving solid customer relationships to the next level.

This position requires a thorough understanding of network architecture fundamentals, protocols, routing, firewalls, cloud, and devOps. This position is part of a larger team; however, the candidate is expected to work well on his or her own under general supervision, be self-directed, able to multi-task, and prioritize work.

Required:

U.S. Citizenship.

Located Near Greater Atlanta, GA Area

Must have 4 or more years of professional experience

Degree or equivalent experience

Experience working in an operations environment (preferably MSSP)

4+ years of experience with administration of enterprise SIEM technologies (Splunk primarily)

Splunk Cloud: Architect, design, engineer, support, configure, administer content and maintain infrastructure for a highly available and disaster recovery configuration

Splunk: Administer Splunk and Splunk Application for Enterprise Security log or event management

Expertise with EDR toolsets - administration, analysis, and integrations preferably Crowdstrike

Familiarity with cloud network architectures and computing

Familiarity with SOAR Products include Phantom and ThreatConnect

Experience with scripting (e.g., PowerShell, bash/ksh/sh,python)

Ability to assist team with Incident response and handling

Knowledge of network configurations and security (TCP/IP stacks, switch/router configuration, and routing protocols such as BGP, OSPF, EIGRP and VRF)

Excellent demonstrated experience in communicating technical information to non-technical and technical audiences.

Experience working directly with senior leadership and management.

Customer facing

Desired:

Automation: Experience related to Ansible for performing administration using code and Git/Gitlab for workflow management

Troubleshooting experience with firewalls, IDS/IPS, and proxies, including network captures and log analysis

Familiarity with Windows and Linux integration, troubleshooting, deployment, patching, and administration

Experience with Logstash and ability to collect, parse, and transform logs

Experience with the standards compliance process (e.g., NIST) and writing network security documentation

Certifications such as Splunk IT Service Intelligence Certified Admin , Splunk Enterprise Security Certified Admin , Splunk Cloud Certified Admin, CCNA, CCNP)

Requires advanced knowledge of work area typically obtained through advanced education combined with experience. May have practical knowledge of project

management. Practical to substantial knowledge of RTX projects, programs or systems with the ability to make enhancements and leverage in daily work.

Typically requires:

A University Degree or equivalent experience and minimum 5 years prior relevant experience, or An Advanced Degree in a related field and minimum 3 years experience

Engineering/Other Technical Positions:

Typically requires a degree in Science,Technology, Engineering or Mathematics (STEM) and a minimum of 5 years of prior relevant experience unless prohibited by local laws/regulations.

Raytheon Technologies is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

Privacy Policy and Terms:

Click on this link to read the Policy and Terms