JPMorgan Lead Security Engineer - SIEM/Splunk 

United States, Texas, Plano 

724791680

Job responsibilities

• Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems
• Develops secure and high-quality production code and reviews and debugs code written by others.
• Design, deploy, and manage Splunk infrastructure in on-premise and cloud environments to support business needs.
• Monitor and maintain the health and performance of Splunk systems, ensuring high availability and reliability.
• Troubleshoot and resolve complex issues related to Splunk architecture, including data ingestion, indexing, and search performance.
• Collaborate with cross-functional teams to gather requirements and implement Splunk solutions that meet organizational objectives.
• Develop and maintain documentation for Splunk architecture, processes, and procedures.
• Conduct regular system audits and optimize Splunk configurations for improved performance and efficiency.
• Stay up-to-date with the latest Splunk features and industry trends to continuously enhance the Splunk environment.
• Provide training and support to end-users and stakeholders to maximize the value of Splunk solutions.

Required qualifications, capabilities, and skills

• Formal training or certification on software engineering concepts and 5+ years applied experience.
• Proficient in maintaining and managing Splunk application deployed in AWS ensuring high availability, performance and security.
• Extensive experience using Terraform to deploy , manage and scale infrastructure with AWS environment.
• Proven experience as a Splunk Administrator or Engineer with a strong track record in managing complex Splunk deployments.
• In-depth knowledge of Splunk Enterprise, Splunk Cloud, and related technologies.
• Expertise in configuring and managing Splunk forwarders, indexers, search heads, and deployment servers.
• Strong understanding of data ingestion, parsing, and indexing processes within Splunk.
• Experience with scripting languages (e.g., Python, Bash) for automation and integration tasks.
• Familiarity with cloud platforms (e.g., AWS, Azure, GCP) and their integration with Splunk.
• Excellent problem-solving skills and the ability to work independently in a fast-paced environment.

Preferred qualifications, capabilities, and skills

• In-depth knowledge of the financial services industry and their IT systems
• Experience working within a large-scale or global enterprise
• Strong communication and collaboration skills to work effectively with technical and non-technical stakeholders.
• Splunk certifications (e.g., Splunk Certified Admin, Splunk Certified Architect) are a plus.