Security Engineer - Splunk Global Security (US Remote Available) - 30164

Splunk is here to build a safer and more resilient digital world. The world's leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable. While customers love our technology, it's our people that make Splunk stand out as an amazing career destination and why we've won so many awards as a best place to work. If you become a Splunker, we want your whole, authentic self, what we call your "million data points". So bring your work experience, problem-solving skills and talent, of course, but also bring your joy, your passion and all the things that make you, you.

Role Summary

This role will report to the Manager of Security Platform Engineering within the Splunk Global Security (SGS) organization to join a hardworking team of security engineers. As a member of the Security Engineering team, you will be responsible for designing, developing and deploying tools and solutions to improve Splunk’s security posture. You will have an opportunity to use your entire range of skills and interact with a number of teams within Splunk Security ranging from SOC, Incident Response (IR) and Forensic, Threat and Vulnerability Management (TVM) and Cybersecurity Risk.

What you'll get to do

1. Design, code, build and maintain standalone tools on Cloud infrastructure for all SGS employees to use.
2. Create solutions to solve security problems in our Corporate and Cloud environments.
3. Report and respond to possible threats, security issues or vulnerabilities.
4. Work with internal and external auditor teams to meet and exceed requirements.
5. Operationalize, Monitor, and Test Security tools across Splunk environments.
6. Develop Security Automation Solutions.
7. Create Splunk Dashboards for reporting Security features.
8. Participate in a 1-3 time a year on-call rotation for a week, which includes 24/7 support for security tool operations.

Must-have Qualifications

1. 5 years of related experience with a Bachelor’s degree; or 3 years and a Master’s.
2. Experience with system administration and/or application security.
3. Coding skills such as Python, Bash, Java, or other scripting languages.
4. Understanding of security controls, their purpose, and value they bring in improving Security.
5. Experience with cloud technologies (such as AWS and GCP).
6. Good system design skills and optimal solutions to problems balancing scope, performance, and other trade-offs.
7. Experience with compliance frameworks like SOC2, PCI and/or FedRAMP are a bonus.
8. Certifications such as Sec +, CISSP, GSEC, CEH or CISM are a bonus.
9. Excellent communication and project management skills.

Nice-to-have Qualifications

We’ve taken special care to separate the must-have qualifications from the nice-to-haves. “Nice-to-have” means just that: Nice. To. Have. So, don’t worry if you can’t check off every box. We’re not hiring a list of bullet points–we’re interested in the whole you.

• Preferred experience in some or all of these fields: vulnerability management, incident response and forensics, cloud computing, and/or security automation, network engineering, experience with Splunk.