Cyber Security Analyst III - SIEM Engineering (Splunk) 03866 NWSOL

Location: Richland, Washington
Title: Cyber Security Analyst III - SIEM Engineering (Splunk)
Schedule (FT/PT): Regular Full Time
Travel Required: No
Clearance: Ability to Obtain

North Wind Solutions is a Government contracting small business with operations at military and civilian installations across the United States. The company’s focus is facilities operation and maintenance, waste management and radiological services, security control and force protection, and environmental services.

POSITION PURPOSE:

As a Cyber Security Analyst III in SIEM Engineering, you will serve as a technical lead in designing, configuring, and maintaining the organization’s Splunk Security Information and Event Management (SIEM) platform. You will play a critical role in enhancing detection capabilities, supporting incident response efforts, and improving visibility across the cybersecurity program at the DOE Hanford Site. This role is ideal for experienced professionals with a background in security operations and a deep understanding of SIEM technologies.

This is a high-impact role that offers technical leadership in a mission-critical environment. As a Cyber Security Analyst III in SIEM Engineering, you will help define and mature security monitoring capabilities at a major national infrastructure site while working alongside a dedicated team of cybersecurity professionals.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

• Design, deploy, configure, and maintain Splunk components including forwarders, indexers, and search heads.
• Develop and fine-tune detection rules, correlation searches, dashboards, alerts, and reports to support threat detection and response.
• Integrate logs and data sources from a variety of systems, applications, and network infrastructure into the Splunk platform.
• Support use-case development and threat hunting initiatives through advanced data analytics.
• Optimize data ingestion and retention strategies to ensure efficient performance and compliance with data policies.
• Assist incident response teams by providing actionable insights and forensic data from Splunk.
• Collaborate with IT, network, and cybersecurity stakeholders to improve event visibility and log management practices.
• Maintain Splunk system health and perform version upgrades, patching, and troubleshooting.

MINIMUM QUALIFICATIONS:

Education and Experience:

• Bachelor’s Degree in Cybersecurity, Computer Science, Information Systems, or a related field.
• Minimum of 5 years of relevant cybersecurity experience, with at least 3 years of hands-on experience engineering or administering Splunk in a security operations context.

Skills and Abilities:

• Expert knowledge of Splunk Enterprise architecture, query language (SPL), and best practices for SIEM operations.
• Experience integrating and normalizing diverse log sources and managing data onboarding pipelines.
• Strong analytical and troubleshooting skills with a focus on cybersecurity event analysis.
• Familiarity with incident response, threat intelligence, and detection engineering workflows.
• Excellent communication and documentation skills.
• Relevant certifications such as Splunk Core Certified Power User, Splunk Enterprise Security Administrator, or equivalent are preferred.

Special Requirements:

• Must pass pre-employment background check.
• Must pass pre-employment drug screening.
• Applicants are required to have REAL ID ACT compliant documentation at time of hire and nothing on record that would prohibit you from gaining access to Department of Energy sites.

PREFERRED QUALIFICATIONS:

Previous experience in U.S. Department of Energy SIEM engineering, system administration, and cybersecurity operations.

PHYSICAL DEMANDS:

This position is primarily sedentary in nature. The work involves sitting most of the time but may involve walking or standing for brief periods of time. The work may involve exerting up to 10 pounds of force occasionally or a negligible amount of force frequently to lift, carry, push, pull, or otherwise move objects, including the human body.

WORKING ENVIRONMENT:

Can work in a typical office or work-from-home environment (WFH). The noise level in the office work environment is usually quiet.

North Wind offers a competitive pay and benefits package to include health, life, and disability insurance benefits, 401(k) with company match, generous paid leave and tuition reimbursement for eligible employees. As a company, we are committed to employee wellness, professional development, and work-life balance. We value safety, reliability, and commitment to our people! For more information about our benefits or hiring philosophy, visit the North Wind Career Opportunities Page.

Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions. The nature of those accommodations will be determined on a case-by-case basis. If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process, or are limited in the ability or unable to access or use this online application process and need an alternative method for applying, you may contact our Helpline +1.208.528.8718 or use the Request for Reasonable Accommodation form to get assistance.

North Wind is an Equal Employment Opportunity (EEO) employer and welcomes all qualified applicants. Applicants will receive fair and impartial consideration without regard to race, sex, color, religion, national origin, age, disability, veteran status, genetic data, religion, or other legally protected status. All qualified applicants will receive consideration for employment without regard to their protected veteran status and will not be discriminated against on the basis of disability.

Proof of citizenship will be required as a condition of employment.

Candidates may be required to obtain and hold a Secret or Higher US Government Clearance.