Raytheon Veterans Jobs

Job Information

Raytheon Technologies Splunk Service Engineer in Morrisville, North Carolina

This position is CONTINGENT upon funding, an open position, customer approval, completion of a favorable background investigation, and the ability to obtain and maintain a USPS sensitive clearance .

An experienced Splunk Service Engineer is needed to join the security team of a major nationwide organization, with thousands of sites, to continually improve its complex multi-protocol nationwide network.

Location: Morrisville, NC

Responsibilities:

  • Responsible for tuning and configuration of Splunk for Enterprise Security (ES) services, develop use cases with CISO end users to build content and assist in developing advanced security use cases.

  • Participate in requirements gathering, solutions architecting, design and build of technology solutions to support Continuous Monitoring Program.

    Required Skills :

  • Must have at minimum 5+ years of relevant work experience.

  • The position requires U.S. Person status or a Non-U.S. Person be eligible to obtain Authorization.

  • Develop and Implement Actionable Alerts and Workflow for Splunk as a CISO Monitoring tool

  • Develop and Implement Apps & Knowledge Objects (KO) like Dashboard, Reports, Data Models

  • Configure incident response and remediation workflows for ES

  • Work with the Splunk Architect/Admin to promote private KO to Global KO

  • Evaluate enterprise security risks and identify recommendations for maturing and evolving Continuous Monitoring Program to facilitate proactive identification and mitigation of risk.

  • Develop risk rules and risk incident rules to correlate and alert to significant cyber events.

  • Develop custom dashboards specific to RBA to highlight risk detail, health analysis and risk suppression.

  • Develop workflow actions to display details around a risk alert.

  • Assist and/or train CISO Splunk Engineering team on Data Lifecycle Support

  • Assist and/or train CISO Engineering team and analysts on Content Development

  • Develop and implement automation and efficiencies with Splunk and CISO workflow

  • Provide Analyst training and workshops on using Splunk

  • Review new content, alerts and data sources with CISO Analysts.

  • Assist in development of advanced security use cases in Splunk

  • Understanding of network protocols.

  • Work with CISO Operations and Engineering to gather requirements for building content and use cases in Splunk.

  • Have strong communication and collaboration skills, both oral and written, with excellent interpersonal and organization skills.

    Required Education:

    College Degree in a technical discipline, or 3+ additional years of professional work experience in a related field such as Public Key Infrastructure, Infrastructure IT (Systems Administration, Network Administration Windows/Linux OS, Network Administration, Active Directory and/or Virtualization.

    • Relocation is not provided.
  • This is a full-time salaried position 192445

Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

DirectEmployers