Location : Plano, TX (Open to relocation candidate)
Overview: We are seeking a talented Splunk SOAR (Security Orchestration, Automation, and Response) Engineer to join our dynamic team in the financial services sector. As a Splunk SOAR Engineer, you will play a critical role in designing, implementing, and maintaining automated security solutions using Splunk's Security Operations Suite. Your expertise will contribute to enhancing our organization's ability to detect, investigate, and respond to security incidents swiftly and effectively.
Responsibilities:
Design and Implementation:
Collaborate with security analysts and stakeholders to understand requirements and design automated workflows and playbooks within the Splunk SOAR platform.
Develop custom scripts and integrations to automate security processes and streamline incident response workflows.
Configure and customize Splunk SOAR components to align with organizational security policies and compliance requirements.
Integration and Orchestration:
Integrate security tools and systems with Splunk SOAR to orchestrate automated responses to security incidents.
Implement bi-directional integrations with SIEM, threat intelligence feeds, endpoint security solutions, and other security technologies.
Design and deploy orchestration workflows to automate incident enrichment, triage, and response actions.
Incident Response:
Act as a subject matter expert on the Splunk SOAR platform, providing guidance and support to security analysts during incident response activities.
Monitor and analyze security alerts and events, leveraging Splunk SOAR capabilities to investigate and respond to potential threats.
Enhance incident response procedures by continuously improving and optimizing automated playbooks and workflows.
Documentation and Reporting:
Document technical specifications, configurations, and procedures related to Splunk SOAR implementations and integrations.
Generate regular reports and metrics to measure the effectiveness of automated security controls and incident response processes.
Maintain comprehensive documentation of playbooks, scripts, and integrations for knowledge sharing and future reference.
Collaboration and Knowledge Sharing:
Collaborate with cross-functional teams, including cybersecurity, IT operations, and risk management, to align security automation initiatives with business objectives.
Stay updated on emerging security threats, industry trends, and best practices in security automation and orchestration.
Share knowledge and expertise with colleagues through training sessions, workshops, and technical presentations.
Qualifications:
Bachelor's degree in Computer Science, Information Technology, or related field.
Previous experience 5 years working as a Splunk Engineer or Security Engineer with a focus on security automation and orchestration.
In-depth knowledge of Splunk Enterprise Security and Splunk Phantom, including hands-on experience designing and implementing automated workflows and playbooks.
Proficiency in scripting languages such as Python, PowerShell, or JavaScript for developing custom automation scripts and integrations.
Strong understanding of security operations, incident response processes, and cybersecurity frameworks (e.g., NIST, CIS Controls).
Experience integrating security technologies and tools such as SIEM, IDS/IPS, EDR, firewalls, and threat intelligence platforms.
Excellent communication skills with the ability to collaborate effectively with technical and non-technical stakeholders.
Relevant certifications such as Splunk Certified Admin, Splunk Certified Architect, or Certified Information Systems Security Professional (CISSP) are a plus.
*******Dexian is a leading provider of staffing, IT, and workforce solutions with over 12,000 employees and 70 locations worldwide. As one of the largest IT staffing companies and the 2nd largest minority-owned staffing company in the U.S., Dexian was formed in 2023 through the merger of DISYS and Signature Consultants. Combining the best elements of its core companies, Dexian's platform connects talent, technology, and organizations to produce game-changing results that help everyone achieve their ambitions and
goals.Dexian's brands include Dexian DISYS, Dexian Signature Consultants, Dexian Government Solutions, Dexian Talent Development and Dexian IT Solutions. Visit https://dexian.com/ to lear
n more.Dexian is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, sexual orientation, gender identity, age, national origin, ancestry, citizenship, disability, or veteran