SOC Content Developer-Atlanta, GA

iSenpai is a Woman Owned Small Business (WOSB) that provides enterprise IT and cyber security services, cloud technology, and data analytics solutions for US Government and commercial customers. We specialize in cloud-based solutions with cyber security integrated into the design, delivered using efficient Agile DevSecOps. Engaging across industry and academia to develop innovative approaches, we support our customers’ changing mission needs and data. Our iSenpai designs are industry proven to handle enormous data streams from open source, Internet of Things (IOT), cyber tools, and social media. We bring expertise with National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 and the Risk Management Framework (RMF) to maintain secure, scalable, and highly available systems to meet the mission. Our goal is to provide expert services to our clients while cultivating knowledge among all employees for the advancement of our services. We offer a comprehensive package of 100% employer paid benefits, including medical, dental, vision, HSA Contribution, 401K match, and more.

Benefits

Extremely Competitive Salary

Health, Dental, Vision Insurance Premiums are 100% provided by iSenpai for employees and eligible dependents

Personal Accident Insurance provided by iSenpai

Life Insurance provided by iSenpai

Short and Long Term Disability Insurance provided by iSenpai

401K Contribution Matching - 5% dollar for dollar

401K Profit Sharing based on company performance

Paid time off (PTO) starting at 4 weeks a year (20 days)

PTO buy back program

11 paid Federal Holidays

Reimbursement for any wellness programs and/or work life balance programs

Reimbursement for cell phone plans

Reimbursement for home internet

Reimbursement every 2 years for a cell phone upgrade

Thousands of discounts on everything from your cell phone bill, to NFL tickets, Movie Tickets, Live Performances, etc

Rewards for obtaining new IT certifications

Computer-based training (CBT) library on IT and information security topics and certifications

Remote access to a virtual lab for testing/learning opportunities

Flexible / Alternative Work Schedules (based on customer requirements)

iSenpai is an equal opportunity / affirmative action employer. We give equal consideration to all qualified candidates without regard to race, color, gender, nationality, disability or protected veteran status.

Splunk Content Developer - Atlanta, GA
Required Education
Bachelor’s Degree in Information Technology or related field

Required Experience
6 years Splunk Content Development experience

Work Location
Atlanta, GA

Clearance Required
Active Public Trust or DoD Security Clearance

Description
Splunk Content Developer is responsible for developing, customizing, and configuring Splunk apps and dashboards. The candidate will build and integrate content in a Splunk Core and ES environment and provide technical support to NOC and SOC customers in order to detect, hunt, and mitigate cyber threats. Ability to interact with end users to gather requirements, optimize existing SIEM processes and leverage Splunk technology to improve detection and analysis methods. Reviews and recommends cyber security solutions to customer problems based on an understanding of products/systems test results. Provides Splunk support and guidance to NOC and SOC analysts, improve efficiency of NOC and SOC analysts, operates under deadlines, and is able to work on multiple tasks.

Responsibilities

Support the day-to-day operation of a highly available distributed multi-clustered multi-tenant Splunk deployment

Create queries, dashboards, and visualizations to support customer requirements and monitoring of the Splunk deployment

Develop custom functions utilizing REST endpoints and integrating technologies with Splunk

Create and manage Splunk knowledge objects to include apps, dashboards, alerts, extractions, tags, workflow actions, and aliases

Develop content with regular expressions, performing data interpretation classification, and enrichment

Develop reports for operational activities and to meet NOC and SOC customer requirements

Facilitate excellent problem solving, critical thinking, and analytical skills with the ability to de-construct problems

Provide resources and certified personnel necessary with extensive knowledge of Splunk

Required Qualifications

Flexibility to meet any threat scenario 24/7/365 as mission dictates.

Must be a US Citizen with an active DoD Public Trust Clearance.

Desirable Qualifications

Holds one or more Splunk certifications (Power User, Administrator, ES Developer, etc)

Experience or a desire to learn advanced SOC methodologies using Splunk ES

Experience or a desire to learn NOC technologies

Experience with Security Orchestration, Automation and Response (SOAR) tools and technologies (e.g. Splunk Phantom, Ansible, Python, etc.)

#J-18808-Ljbffr