Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Splunk Engineer image - Rise Careers
Job details

Splunk Engineer

At phia we hire talented and passionate people who are focused on collaborative, meaningful work, providing technical and operational subject matter expertise and support services to our partners and clients.


phia is seeking a Splunk Engineer with a passion for protecting large enterprises from cyber threats. This is a remote position to be performed from within the United States. U.S Citizenship and the ability to obtain a Public Trust are required. 




What You'll Do
  • Tune and configure Splunk Core and Splunk Enterprise Security (ES) services.
  • Develop and implement actionable alerts and workflows for Splunk as a SIEM tool.
  • Create and manage Apps & Knowledge Objects (KO) including dashboards, reports, and data models.
  • Collaborate with Splunk Architect/Admin to promote private KO to Global KO.
  • Implement automation to improve CISO workflow efficiency using Splunk.
  • Work with CISO end users to build content and develop advanced security use cases.
  • Develop risk rules and risk incident rules for correlating and alerting significant cyber events.
  • Create custom dashboards for Risk-Based Alerting (RBA) highlighting risk details, health analysis, and risk suppression.
  • Configure incident response and remediation workflows for ES notable events.
  • Develop custom machine learning models for anomaly-detection based alerting augmentation.
  • Participate in requirements gathering, solution architecting, and design of technology solutions for Continuous Monitoring Program.
  • Conduct workshops and training sessions for CISO teams on Splunk engineering, searching, and content development.
  • Assist CISO Splunk Engineering team with Data Lifecycle Support.
  • Work with various stakeholders to implement and maintain event logging across multiple systems and platforms.
  • Support off-hours and weekend efforts for incident investigations and systems maintenance.


Required: Education + Experience
  • 5+ years of experience in information security operations and/or related IT operational functions.
  • Experience supporting operational Splunk deployments (e.g. installation & maintenance, data ingestion, creation/configuration/tuning of dashboards/rules/workflows/reports/etc.).
  • Experience with SAAS- or cloud-hosted Splunk implementation (preferred).
  • Proven ability to provide high-quality written technical reports and effective stakeholder communication.
  • Excellent organizational skills.


Security Clearance
  • U.S. Citizenship required.
  • Ability to obtain Public Trust (or higher) government clearance.


Preferred
  • Bachelor’s degree in Computer Science, Information Technology or Information Security or other relevant disciplines.
  • Proximity to customer locations in the DMV (DC, MD, or VA) Metro area or Raleigh/Durham, NC is ideal.


Preferred Certifications
  • Splunk Core Certified Power User
  • Splunk Core Certified Advanced Power User
  • Splunk Enterprise Certified Admin
  • Splunk Cloud Certified Admin
  • Other Splunk or SIEM certifications


#LI-LC1


Who You Are

 A proactive problem solver that appreciates the challenges of working in a fast-paced, dynamic environment.

Intellectually curious with a genuine desire to learn and advance your career.

An effective communicator, both verbally and in writing.

Customer service-oriented and mission-focused.

Critical thinker with excellent problem-solving skills

 

If your experience and qualifications aren’t a match for this position, you will remain in our database for consideration for future opportunities that may be a better fit.


Who We Are

phia, LLC is a Northern Virginia-based, small business established in 2011 with a focus on Cyber Intelligence, Cyber Security/Defense, Intrusion Analysis & Incident Response, Cyber Architecture & Capability Analysis, Cyber Policy & Strategy, and Information Assurance/Security. we proudly support various agencies and offices within the Department of Defense (DoD), Federal government, and private/commercial entities.

phia values work-life balance and offers the following benefits to full-time employees:

 Comprehensive medical insurance to include dental and vision

Short Term & Long-Term Disability

 401k Retirement Savings Plan with Company Match

Tuition and Professional Development Assistance Flex Spending Accounts (FSA)


phia does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity, or any other reason prohibited by law in the provision of employment opportunities and benefits.


Average salary estimate

$0 / YEARLY (est.)
min
max
$0K
$0K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Splunk Engineer, phia, LLC

If you're looking for an exciting opportunity to become a Splunk Engineer at phia in Merrifield, VA, you might just be in luck! At phia, we are all about hiring talented and passionate individuals who thrive in collaborative environments. As a Splunk Engineer, you will play a crucial role in protecting large enterprises from potential cyber threats while working in a supportive remote position within the United States. Your days will be filled with tuning and configuring Splunk Core and Enterprise Security services, developing actionable alerts, and managing Apps and Knowledge Objects. You will collaborate closely with the Splunk Architect/Admin to elevate private knowledge objects to a global level and implement automation that enhances efficiency for our CISO workflows. Additionally, your expertise will contribute to building advanced security use cases, developing risk incident rules, and creating custom dashboards. If you're a proactive problem solver with a passion for learning and a knack for effective communication, there’s a place for you at phia, where we value work-life balance and offer comprehensive benefits. Join us to contribute to a mission that matters!

Frequently Asked Questions (FAQs) for Splunk Engineer Role at phia, LLC
What qualifications do I need to apply for the Splunk Engineer position at phia?

To apply for the Splunk Engineer position at phia, you should have at least 5 years of experience in information security operations or related IT functions. Preferred qualifications include a Bachelor's degree in Computer Science or Information Technology, along with certifications such as Splunk Core Certified Power User or Splunk Enterprise Certified Admin.

Join Rise to see the full answer
What are the primary responsibilities of a Splunk Engineer at phia?

As a Splunk Engineer at phia, your primary responsibilities include tuning and configuring Splunk services, developing alerts and workflows, creating dashboards and reports, and working closely with the CISO team to build advanced security use cases. You'll also be involved in incident response workflows and in driving efficiency through automation within the Splunk ecosystem.

Join Rise to see the full answer
Is the Splunk Engineer position at phia remote?

Yes, the Splunk Engineer position at phia is a remote role to be performed from within the United States. This means you can enjoy the flexibility of working from home while still collaborating with our dynamic team.

Join Rise to see the full answer
What type of projects will I work on as a Splunk Engineer at phia?

As a Splunk Engineer at phia, you will work on various projects, including the creation of custom dashboards for risk-based alerting, implementation of automation for CISO workflows, and development of machine learning models for anomaly detection. Your work will contribute significantly to the security posture of large enterprises.

Join Rise to see the full answer
What skills are essential for success as a Splunk Engineer at phia?

Success in the Splunk Engineer role at phia requires strong analytical skills, excellent problem-solving abilities, and the capability to communicate complex technical concepts effectively. Additionally, experience with operational Splunk deployments and a solid understanding of cybersecurity principles are crucial.

Join Rise to see the full answer
How does phia support professional development for Splunk Engineers?

phia is committed to the professional development of its employees, offering assistance for tuition and professional development opportunities. This allows Splunk Engineers to continue learning and expanding their skills in the rapidly evolving field of cybersecurity.

Join Rise to see the full answer
What is the work culture like at phia for a Splunk Engineer?

The work culture at phia is supportive and collaborative, focused on meaningful work. As a Splunk Engineer, you'll be part of a team that values your contributions while providing an environment that encourages learning and professional growth.

Join Rise to see the full answer
Common Interview Questions for Splunk Engineer
Can you explain your experience with configuring Splunk Core and Enterprise Security services?

When answering this question, highlight specific projects where you've configured Splunk services. Discuss the challenges you faced and how you overcame them, focusing on your technical skills and understanding of the platform.

Join Rise to see the full answer
How do you approach developing actionable alerts and workflows in Splunk?

In your response, outline your methodology for analyzing data and identifying key threats. Provide examples of alerts you've created, emphasizing their effectiveness in real-world scenarios.

Join Rise to see the full answer
Describe a challenging incident where you used Splunk to improve security posture.

Share a detailed story about an incident, highlighting how Splunk was integral in detection, response, or prevention. Focus on your problem-solving process and the impact of your actions.

Join Rise to see the full answer
What strategies do you employ for risk-based alerting in Splunk?

Discuss your understanding of risk-based alerting and how you tailor alerts to focus on significant threats. Provide examples of custom dashboards you've built that showcase health analysis and risk suppression.

Join Rise to see the full answer
How do you implement automation in your workflow as a Splunk Engineer?

Explain your experience with automation tools and scripting in the Splunk environment. Provide any specific examples of how you've successfully automated processes to improve efficiency.

Join Rise to see the full answer
What is your experience working with machine learning in Splunk?

Talk about any machine learning models you've implemented for anomaly detection. Discuss the results achieved and how those models have enhanced your security operations.

Join Rise to see the full answer
How do you ensure effective communication with stakeholders while managing a Splunk project?

Emphasize your communication skills and provide examples of how you have kept stakeholders informed and engaged throughout a project, ensuring everyone is aligned and aware of progress.

Join Rise to see the full answer
What measures do you take to stay updated with Splunk and cybersecurity trends?

Share your continuous learning habits, such as attending conferences, participating in webinars, and following industry leaders. Mention any specific certifications or training that you've pursued.

Join Rise to see the full answer
Describe how you would conduct a training session for the CISO team on Splunk usage.

Outline your approach for structuring training sessions, focusing on interactive elements and hands-on learning. Emphasize the importance of tailoring content to the audience's skill level.

Join Rise to see the full answer
How do you handle off-hours incidents and system maintenance in your role?

Discuss your methods for being available during off-hours, including any tools or processes that help you manage incidents effectively. Highlight your commitment to ensuring minimal disruption to operations.

Join Rise to see the full answer
Similar Jobs
Photo of the Rise User
phia, LLC Remote Washington, DC
VIEW
Posted 3 days ago
I
Ignite Remote No location specified
VIEW
Posted 6 days ago
Photo of the Rise User
S&P Global Remote Michigan
VIEW
Posted 21 hours ago
Photo of the Rise User
General Dynamics Information Technology Hybrid Florida
VIEW
Posted 12 days ago
Photo of the Rise User
Palo Alto Networks Hybrid Santa Clara, CA
VIEW
Posted 6 days ago
Photo of the Rise User
M9 Solutions Remote Arlington
VIEW
Posted 9 days ago
Photo of the Rise User
TekSynap Hybrid Liberty, NC
VIEW
Posted 6 days ago
Photo of the Rise User
EY Remote Buffalo, NY
VIEW
Posted 10 days ago
Photo of the Rise User
Civis Analytics Remote Remote
VIEW
Posted 3 days ago
Dental Insurance
Disability Insurance
Flexible Spending Account (FSA)
Health Savings Account (HSA)
Vision Insurance
Family Medical Leave
Paid Holidays
Photo of the Rise User By phia, LLC

future of fashion coming soon

9 jobs
MATCH
Calculating your matching score...
FUNDING
DEPARTMENTS
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
LOCATION
EMPLOYMENT TYPE
Full-time, remote
DATE POSTED
November 24, 2024

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
Show me relevant jobs ASK RISA ✨
ABOUT RISE
FOR COMPANIES
REMOTE JOBS & MORE
LOOKING FOR A JOB?
FIND A JOB NEAR ME
POPULAR JOBS
Rise logo
Privacy Policy and Terms of Service
© 2021 Work Rise LLC. All rights reserved.
Proudly made in NYC.
CONNECT
Facebook Instagram LinkedIn Tiktok