Cybersecurity Incident Response Analyst
| Company | Splunk |
|---|---|
| Location | Texas, USA, Arizona, USA, Colorado, USA |
| Salary | $Not Provided – $Not Provided |
| Type | Full-Time |
| Degrees | Bachelor’s |
| Experience Level | Junior, Mid Level |
Requirements
- Bachelor’s degree in computer science or related field or equivalent relevant experience (2+ years)
- Familiarity with information security technologies, including firewalls, intrusion detection systems, and endpoint security tools; basic understanding of cloud and container security tools and practices is a plus
- Solid grasp of TCP/IP protocols, DNS, network analysis, and the OSI framework
- Exposure or hands-on experience with cloud platforms and technologies
- Ability to manage multiple tasks and stay organized in a fast-paced environment
- Approaches problems creatively and follows through on solutions
- Excellent interpersonal skills and ability to see situations through a Customer First lens; ability to translate sophisticated technical concepts into clear, accessible language
- Meticulous attention to detail; consistently meets high standards of quality
Responsibilities
- Support the 24×7 SOC operation: respond to security alerts, contain threats, and ensure the safety and security of Splunk’s product environments
- Assist in tuning and updating detection logic in collaboration with Detection Engineering
- Improve the quality of searches to enrich data through creation of automation and orchestration playbooks
- Participate in threat hunting engagements across Splunk environments to surface sophisticated attacks and threats
- Collect and represent evidence to support the organization’s compliance and control monitoring responsibilities
- Author, review, and update existing runbooks to ensure optimal and efficient response actions
- Partner with Splunk’s Center of Excellence to validate existing data sources and improve data ingestion standards, ensuring data quality
- Collaborate with Splunk product teams by sharing observations and helping test security-related features
- Work closely with teammates to share knowledge and contribute to a positive and effective team environment
Preferred Qualifications
-
No preferred qualifications provided.