Network Security Engineer
KForce

Job Info

---

Responsibilities

Kforce has a client in search of a Network Security Engineer in Ashburn, VA.Summary:The Principal Splunk Engineer is a part of our Advanced Security Operations Center within the Company's Managed Security Services team. This role is designed to provide senior level leadership for the design, engineering, and implementation of security event data collection for our managed security service customers related to incident response, threat monitoring, threat intelligence, and operations. These programs pertain to the data identification, assessment, ingestion, normalization and enrichment activities required for the Company's Advanced Security Operations Center to perform proper detection and analytics of cyber threats and response.Key Tasks:

• Lead and perform the content development within Splunk Platform which includes use case creation, dashboard design, tuning of use cases to minimize false positives, development of reporting metrics such as SLA and KPI reports and log source configuration
• Threat hunting and independent threat research to augment and feed custom use case creation
• Work with the customer to incorporate asset landscape details, severity threats campaigns, and data breaches, as well as perform impact and exposure assessments relative to the customer
• Act as an escalation point for the Security Analysts to assist and advise on the most complex security threat investigations

Skills

• Bachelor's degree or four or more years of work experience
• Six or more years of relevant work experience
• Four or more years of experience as a SIEM Engineer with Splunk, QRadar, RSA Netwitness or other SIEM technology
• SIEM administration, configuration, and optimization experience
• Threat hunting experience
• Experience participating in and acting as an escalation point for complex network threat investigations
• Linux command line experience
• Knowledge of regular expressions and data normalization
• Willingness to travel

Even better if you have:

• Master's degree in Information Security, Cyber Security, Computer Science or a related field
• Certifications related to Splunk, QRadar, RSA Netwitness or other SIEM technology
• Strong interpersonal skills and collaborative style to enable success across multiple partners
• Experience working in a Security Operation Center environment

Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

This job has expired.