Security Engineer II - Splunk

We help the world Be Everyday Ready™ Today’s threatscape is relentless. So are we. At Cyderes, we specialize in building practical IAM, exposure management, and risk programs, and stopping active threats fast with MDR that works with your existing security tools — all augmented by AI and driven by seasoned operators. Our tireless global team is laser-focused on cybersecurity, arming organizations with the people, platforms, and perspectives they need to conquer whatever tomorrow throws their way. Role Summary The security engineer is a subject matter expert accountable for administering our client's SIEM, Log Management Platform and Data Analytical Tool. The security engineer works closely with the Herjavec Group Team at multiple levels to identify and align business and IT objectives, discover Security and Operational pain points, offer recommendations, and recognize current and future IT Security needs.   The Security Engineer is responsible for the management, maintenance, configuration, and troubleshooting of technology solutions. Most work will assign through ServiceNow tickets; the Security Engineer is responsible for completing the customer-initiated requests within Service Level Agreements. Responsibilities

Support Intake process including coverage for Eastern Standard Time Business Hours

Assist with administration and maintenance of SIEM, Log Management and Data Analytical Platform.

Provide Tier-III level technical support for SIEM, Log Management Platform and Data Analytical tools during business hours and non-business hours.

Conduct System Health Checks on managed technologies and provide recommendations on performance improvements.

Create and maintain standard operating procedures, technical documents and troubleshooting guidelines of security solutions.

Monitoring and tuning of managed SIEM technologies to optimize system performance.

Stay current on SIEM best practices, logging standards, and relevant security trends; participate in internal training and knowledge‑sharing sessions.

Configure and troubleshoot managed security devices.

Providing assistance to customer requests such as Log Source configuration, App installation, Data Parsing, Use Case Development and Troubleshoot complex issues for managed technologies.

Responsible for managed technologies patching and updates.

Follow change management processes for SIEM configuration changes and assist with testing in lower environments when applicable.

Develop technical solutions to automate repeatable tasks.

Utilize tools and analytical skills to investigate the root cause of issues across the technologies.

Opening and following up on tickets and customer request with 3rd party vendors.

Collaborate with managers to develop and enhance SIEM service offerings. 

Communicate effectively orally and in writing.

Establish a cooperative working relationship with persons contacted in the course of performing assigned duties.

Requirements

College Diploma or University Degree in Information Security or relevant security up-to-date certificates and/or equivalent work experience

At least Three years of experience in the IT Security and SIEM technologies (Splunk)

Holds industry-recognized certifications of security technologies or network technologies

Proficient knowledge and experience with SIEM

Strong understanding of IT Security concepts, best practices, and market direction

Familiarity with Networking fundamentals such as VLAN, WAN, LAN, VPN, SAN, OSI Model, Firewall, Next-Gen Firewalls, etc.

Knowledge of common information security management frameworks such as ITIL, NIST and PCI DSS.

Excellent communications skills

Exceptional Time Management and organizational skills

A positive and constructive minded team player

Excellent troubleshooting, reasoning and problem-solving skills