Splunk SaaS/SOAR Engineer

Introduction
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe. You’ll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you’ll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.

Your Role and Responsibilities

• Design, deploy, and manage the Splunk SaaS platform, including data ingestion, search optimization, .
• Implement SOAR solutions to automate incident response tasks, integrating with other security tools.
• Develop custom playbooks, rules, and alerts to enhance threat detection and response efficiency.
• Perform continuous tuning and optimization of Splunk SaaS and SOAR systems to
• Work closely with SOC teams to define automation use cases and integrate solutions t
• Provide troubleshooting and technical support for Splunk SaaS and SOAR-related issues.
• Create and maintain comprehensive documentation for Splunk SaaS configurations, SOAR

Required Technical and Professional Expertise

• CompTIA Security+ certification.
• 1-2 years of experience in IT security or network operations.
• Familiarity with SIEM and EDR tools, with a particular focus on Splunk
• Basic understanding of security concepts such as firewalls, IDS/IPS, malware analysis, and incident response.

Preferred Technical and Professional Expertise

• Experience working with FedRAMP (Federal Risk and Authorization Management Program) compliance standards
• Familiarity with NIST (National Institute of Standards and Technology) guidelines, including NIST SP 800-53 and NIST Cybersecurity Framework (CSF).
• Knowledge of other security frameworks such as CIS Controls or ISO 27001.
• Previous experience working with Federal clients in a cloud-hosted environment.

Key Job Details
Role:Splunk SaaS/SOAR Engineer Location: Multiple Locations See All Durham Washington Bethesda Category:Consulting Employment Type:Full-Time Travel Required:No Travel Contract Type:Regular Company:(0147) International Business Machines Corporation Req ID:730763BR

Projected Minimum Salary:$131,500 per year Projected Maximum Salary:$131,500-$155,000/year per year Date Posted:October 6, 2024