Lead Cyber Engineer Analyst - Splunk

Are you passionate about technology and interested in joining a community of collaborative colleagues who respectfully and courageously seek to challenge the status quo? If so, read on to learn more about an exciting opportunity with Deloitte Technology US (DT - US). We are curious and life-long learners focused on technology and innovation.

Recruiting for this role ends on 03-Jun-2024

Work you'll do

The SOC L4 Engineer position supports the SOC as an escalation point identifying and addressing potential SIEM content/level I and II engineering security concerns as this role is the first line of operational support. This role is also responsible for supporting Security application patching, content creation as requested from all stake holders, and development of process documentation.

Security Engineering

• Assist to meet the team's security goals by onboarding new Application/Infrastructure data sources into Splunk.
• Conduct the data analyze required to normalize fields to meet CIM compliant requirements.
• Troubleshot data quality issues during the data onboarding process.
• Provide skillful knowledge within a Linux environment, editing and maintaining Splunk configuration files / Apps to maintain version requirements.
• Interact with senior management, as necessary.
• Document and update the Team's process and Data Ingestion procedures.
  
  

Documentation and Reporting

• Document and update SOC Engineering process procedures and runbooks.
  
  

Content Provider

• Assist internal users of the SIEM by designing and maintaining production-quality dashboards/reports.
• Interact with the SOC Monitoring team to better understand content needs for tuning and development.
• Actively seek to improve and develop new content based upon observed security activity.
  
  

The team

Deloitte Technology US (DT - US) helps power Deloitte's success, which serves many of the world's largest, most respected organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.

The ~3,000 professionals in DT - US deliver services including:

• Cyber Security
• Technology Support
• Technology & Infrastructure
• Applications
• Relationship Management
• Strategy & Communications
• Project Management
• Financials
  
  

Cyber Security

Cyber Security vigilantly protects Deloitte and client data. The team leads a strategic cyber risk program that adapts to a rapidly changing threat landscape, changes in business strategies, risks, and vulnerabilities. Using situational awareness, threat intelligence, and building a security culture across the organization, the team helps to protect the Deloitte brand.

Areas of focus include:

• Risk & Compliance
• Identity & Access Management
• Data Protection
• Cyber Design
• Incident Response
• Security Architecture
• Business Partnership
  
  

Required Qualifications:

• Bachelor's degree in computer science or business Administration, or relevant educational or professional experience.
• 8 total years various technology related experience
• 3 years of experience in Splunk Administration.
• Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.
  
  

Preferred Qualifications:

• Splunk Power User 3 certified
• Knowledge in scripting: Python and PowerShell
• An understanding of the following technologies: leading SIEM technologies such as Splunk, IDS/IPS, network- and host- based firewalls, anti-virus software, data leakage protection (DLP), and Service Now.
• Ability to communicate network security issues to peers and lower management.
• Hands-on experience with at least two of the following technologies: Unix administration, Windows Server administration, Active Directory, Windows Workstation, Routers /Switches management, Firewall Management, SANS/NAS, Web servers, IAM/AAA, IDS/HDS, System vulnerability scanning tools, application/database vulnerability scanning tools, mobile device analysis or Secure coding.
• An understanding of possible attack activities such as network probing/ scanning, DDOS, malicious code activity and possible abnormal activities, such as worms, Trojans, viruses, etc.
• Excellent interpersonal and organizational skills
• Excellent oral and written communication skills
  
  

Information for applicants with a need for accommodation: https://www2.deloitte.com/us/en/pages/careers/articles/join-deloitte-assistance-for-disabled-applicants.html

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $93000 to $191000

#EA_ExpHire

#RITM6920653

#RITM6920686

#NDO2023

Salary : $93,000 - $191,000