Splunk is here to build a safer and more resilient digital world. The world’s leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable. While customers love our technology, it’s our people that make Splunk stand out as an amazing career destination and why we’ve won so many awards as a best place to work. If you become a Splunker, we want your whole, authentic self, what we call your “million data points”. So bring your work experience, problem-solving skills and talent, of course, but also bring your joy, your passion and all the things that make you, you. Role Summary This role will report to the Manager of Security Platform Engineering within the Splunk Global Security (SGS) organization to join a hardworking team of security engineers. As a member of the Security Engineering team, you will be responsible for designing, developing and deploying tools and solutions to improve Splunk’s security posture. You will have an opportunity to use your entire range of skills and interact with a number of teams within Splunk Security ranging from SOC, Incident Response (IR) and Forensic, Threat and Vulnerability Management (TVM) and Cybersecurity Risk. What you’ll get to do Design, code, build and maintain standalone tools on Cloud infrastructure for all SGS employees to use. Create solutions to solve security problems in our Corporate and Cloud environments. Report and respond to possible threats, security issues or vulnerabilities Work with internal and external auditor teams to meet and exceed requirements. Operationalize, Monitor, and Test Security tools across Splunk environments Develop Security Automation Solutions Create Splunk Dashboards for reporting Security features Participates in a 1-3 time a year on call rotation for a week, which includes 24/7 support for security tool operations Must-have Qualifications 5 years of related experience with a Bachelor’s degree; or 3 years and a Master’s Experience with system administration and /or application security Coding skills such as python, bash, java, or other scripting languages. Understanding of security controls, their purpose, and value they bring in improving Security Experience with cloud technologies (such as AWS and GCP) Good system design skills and optimal solutions to problems balancing scope, performance and other trade-offs. Experience with compliance frameworks like SOC2, PCI and/or FedRAMP are a bonus. Certifications such as Sec +, CISSP, GSEC, CEH or CISM are a bonus. Excellent communication and project management skills Nice-to-have Qualifications We’ve taken special care to separate the must-have qualifications from the nice-to-haves. “Nice-to-have” means just that: Nice. To. Have. So, don’t worry if you can’t check off every box. We’re not hiring a list of bullet points-we’re interested in the whole you. Preferred experience in some or all of these fields: vulnerability management, incident response and forensics, cloud computing, and/or security automation, network engineering, experience with Splunk Splunk is an Equal Opportunity Employer At Splunk, we believe creating a culture of belonging isn’t just the right thing to do; it’s also the smart thing. We prioritize diversity, equity, inclusion, and belonging to ensure our employees are supported to bring their best, most authentic selves to work where they can thrive. Qualified applicants receive consideration for employment without regard to race, religion, color, national origin, ancestry, sex, gender, gender identity, gender expression, sexual orientation, marital status, age, physical or mental disability or medical condition, genetic information, veteran status, or any other consideration made unlawful by federal, state, or local laws. We consider qualified applicants with criminal histories, consistent with legal requirements. #J-18808-Ljbffr
Splunk Vulnerability management Python Incident response Amazon Web Services (AWS) Certified Information Security Manager (CISM) Certified Ethical Hacker (CEH) Certified Information Systems Security Professional (CISSP) cloud-computing Google Cloud Platform (GCP) Security Java Bash soc