Enable job alerts via email!
Splunk Threat Content Developer – Cloud API Threat Detection (BHJOB22048_760)
ITmPowered Consulting
Seattle (WA)
On-site
USD 80,000 - 120,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
An established industry player is seeking a Splunk Threat Content Developer to enhance their Cloud and API Security capabilities. In this role, you will leverage your expertise in Splunk to develop and implement innovative content for Threat Detection and analysis. Your contributions will provide critical visibility into emerging threats and bolster the Cyber Security team's efforts. This position offers the flexibility of remote work within the US, making it an ideal opportunity for self-starters who thrive in dynamic environments. Join a forward-thinking firm dedicated to staying ahead of the curve in cybersecurity.
Qualifications
- Experience in Splunk content development and dashboards.
- Strong background in API Security and Cloud Security.
Responsibilities
- Lead Splunk content development for Cloud and API Security.
- Engineer Splunk content for Threat Detection and alerting.
Skills
Education
Tools
Job description
Join to apply for the Splunk Threat Content Developer – Cloud API Threat Detection (BHJOB22048_760) role at ITmPowered Consulting.
Splunk Threat Content Developer will develop, implement, and oversee content for Threat Detection, Threat Analysis, and Threat investigations focused on Cloud Security and API Security. Bring your expertise in Splunk Content Engineering for Threat Detection, Threat analysis, Threat investigation, and Splunk Security Analytics, covering Cloud (Azure, AWS, SaaS, IaaS, PaaS) as well as API Security and OWASP threats.
- Lead Splunk content development for Threat detection, analytics, investigation, and response related to Cloud Security (SaaS / IaaS / PaaS) and API Security (OWASP).
- Develop and implement custom Splunk content and dashboards for emerging Cloud/API threats.
- Provide threat visibility and awareness for the Cyber Security organization.
- Engineer Splunk content for Cloud and API Security Threat Detection, alerting, dashboards, IR runbooks, and automation.
- Create content for specific threat use cases such as cloud misconfigurations, OWASP vulnerabilities, injection flaws, insecure network policies, and more.
- Monitor and analyze ingested data sources for security alerts and develop dashboards accordingly.
- Splunk experience and certifications.
- Strong skills in Splunk content development, dashboards, reports, and lookup tables.
- Experience with API Security, Cloud Security, and OWASP.
- Familiarity with Cloud Security (Azure) and CSPM.
- Programming skills in SPL, Python, Java, C++, Perl, HTML, CSS, Ansible, etc.
- Experience in large-scale cyber security data analytics and SIEM solutions.
- Knowledge of enterprise IT tools and logs (AD/AAD, IAM/MFA, CSPM).
- Security certifications such as GIAC/SANS, ISC(2), EC-Council.
- Experience automating tasks and working in a Cyber Security Operations Center (CSOC).
- Collaboration skills, familiarity with Agile/Scrum, Waterfall, Gantt Charts.
- Ability to work remotely, self-starter, curious mind.
- Experience developing technical documents and threat runbooks.
- Remote work within the US, preferably Colorado or Georgia.
- COVID-19 vaccination and booster required or valid medical exemption.
- Pass a drug screen, background check, and employment verification.
- Must be a US citizen or Green Card holder; no visa sponsorship available.
- W2 employment only; no sub vendors.
- Include contact info on resume (phone/email).
To apply, email your details to careers@itmpowered.com.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
