Expoint - all jobs in one place

Finding the best job has never been easier

Limitless High-tech career opportunities - Expoint

Honeywell Advanced Splunk Security Engineer- 
United States, West Virginia 
529948944

01.04.2025

Share

Log in to apply


-Provide administrator-level support to a Splunk Enterprise Security deployment and how this interacts with core Splunk architecture.
-Conceptualize, deploy, and tune risk-based alerting (RBA) rules for a wide range of security use cases.
-Leverage Search Processing Language (SPL), develop Splunk apps, analyze complex data, interpret insights, create visualizations, set up alerts, and integrate Splunk with other security tools.
-Understand complex cyber security attack vectors such as network reconnaissance, scanning, DDOS, lateral movement, malicious code deployment, in the context of an enterprise environment.
-Able to leverage scripting languages to automate tasks and manipulate data; expertise with Red Hat Enterprise Linux (RHEL); security tool data, including Network & Host Firewall, Tenable, Tanium.


U.S Person Requirements: Must be eligible for USG Security Clearance


-A minimum of 5 years experience with Splunk ES, Splunk core, or similar security tools focused on RBA, monitoring, detection, alerting, data exploration, analysis, and visualization.
-Proficiency in quantitative analyses and visual representations of data sources; versatility in scripting languages, capable of automating tasks and interacting with a variety of security tools.
-Strong communication skills and demonstrated ability to lead major projects across a variety of Teams in a large corporate environment.
-Deep knowledge of scripting languages like CSS, HTML, JavaScript, Python, and shell scripting; intermediate understanding of Red Hat Enterprise Linux (RHEL); experience with security tool data.
-Understanding of cloud and hybrid cloud environments, and security frameworks such as MITRE ATT&CK, OWASP, and NIST.
-Understanding of the evolving threat landscape and current attack tools to gain unauthorized access to enterprise environments.
-A plus for CompTIA and Security + Certification.
-Knowledge of defense, intelligence, and cyber security incident response process and procedures.
-CISSP Certification or equivalent DoD 8570 Certification.
-Splunk certifications.

This position is incentive plan eligible.


Additional Information
  • JOB ID: HRD255070
  • Category: Engineering
  • Location: United States
  • Exempt
  • Due to US export control laws, must be a US citizen, permanent resident or have protected status.

These jobs might be a good fit

Professional CV Builder tool from Expoint.

Get to the top of the "yes list" with a standout CV!

CREATE CV