Cybersecurity Architect (Splunk) - Remote

Washington, DC

Full Time

Mid Level

Cybersecurity Architect:

The cybersecurity architect is responsible for managing all aspects of the SIEM to include operations and maintenance for all lookup files, integrating security feeds, developing the alerting framework, developing the risk framework and the orchestration of all security devices. The role is also responsible for ensuring that data quality and that all data going into the SIEM conforms with the Common Information Model (CIM). The minimum qualifications are as follows:

1. Must have a minimum of 7 years of experience in managing and architecting a large Splunk environment.

2. Must have a detailed understanding of and at least 3 years of experience with Splunk Enterprise Security frameworks including: notable event, threat intelligence, risk, assets & identities.

3. Must have at least 3 years of experience and extensive working knowledge of the Common Information Model (CIM).

4. Must have a detailed understanding of all Splunk back-end configuration files.

5. Must be proficient in Python programming.

6. Experience developing system interconnects via API to include data exchange via XML and JSON.

Must have

Architect
Splunk
Python
Common Information Model (CIM) - (Nice to have)

Apply for this position

Required*

First Name*

Last Name*

Email Address*

Phone*

Address

Resume*

We've received your resume. Click here to update it.

Attach resume or Paste resume

Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file

Human Check*

Submit Application

Thanks for visiting our Job Board. Please review our open positions and apply to the positions that match your qualifications.

Cybersecurity Architect (Splunk) - Remote

Apply for this position