Expoint - all jobs in one place

מציאת משרת הייטק בחברות הטובות ביותר מעולם לא הייתה קלה יותר

Limitless High-tech career opportunities - Expoint

Bank Of America Senior Splunk Detection Engineer 
United States, Colorado, Denver 
197672988

25.03.2025

Job Description:

Job Description:

Role Responsibilities

Required Skills:

  • Minimum of 8+ years of experience in a technical role in the areas of Security Operation, Incident Response, Detection Engineering, Defensive Security/Purple Team, or Cyber Threat Intelligence.
  • Direct experience performing content detection engineering and threat hunting in an active corporate environment.
  • Significant experience working with Splunk Procedure Language to create and tune detections.
  • Direct experience working with very large datasets and log analysis tools including but not limited to: Splunk, Python, Pandas, SQL, Hadoop, Hue.
  • Ability to see the larger picture when dealing with competing requirements and needs from across the organization in order to build consensus and drive results.
  • Ability to navigate and work effectively across a complex, geographically dispersed organization.
  • Experience with more than one or more enterprise scale EDR, SIEM, and SOAR tools.
  • Previous experience performing digital forensics or indecent response on major security incidents.
  • Experience analyzing system, network, and application logging for attack techniques at all stages of the cyber kill chain.
  • Experience consuming and analyzing Cyber Threat Intelligence for actionable takeaways
  • Ability to apply Cyber Threat Intelligence through enrichment, correlation, and attribution
  • Familiarity with offensive security strategies and assessment methodology
  • Experience explaining threat hunt objectives in plain English and able to communicate associated risk.
  • Demonstrated ability to self-direct, with minimal supervision to achieve assigned goals.

Beneficial but not required:

  • Experience with offensive security tools and integration of SIEM, SOAR, CSPM and other technical integrations within large enterprise networks.
  • Knowledge of basic Data Science concepts and processes.
  • Experience performing security analysis and threat hunting in Cloud environments such as Azure, M365, AWS

Skills:

  • Application Development
  • Automation
  • Influence
  • Solution Design
  • Technical Strategy Development

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

1st shift (United States of America)