Principal Engineer - Splunk

At Optiv, we’re on a mission to help our clients make their businesses more secure. We’re one of the fastest-growing companies in a truly essential industry. In your role at Optiv, you’ll be inspired by a team of the brightest business and technical minds in cybersecurity. We are passionate champions for our clients and know from experience that the best solutions for our clients’ needs come from working hard together. As part of our team, your voice matters, and you will do important work that has an impact, on people, businesses, and nations. Our industry and our company move fast, and you can be sure that you will always have room to learn and grow. We’re proud of our team and the important work we do to build confidence for a more connected world.

Our engineers are skilled technical and consultative resources expected to be strong in both technical and soft skills. An engineer must be driven and proactive with the ability to problem-solve, communicate, participate in diverse project teams from a technical perspective, and interface effectively with customers, vendor partners, and colleagues.

How you'll make an impact

• Work with customers to help them articulate their business requirements and how those requirements translate into security features and functionality.
• Delivery of SIEM engagements for AFC
• Architect solutions to ensure that the customer's requirements are met.
• Can handle difficult questions and consistently wins support from client audiences.
• Can modify and change methodologies as required.
• Broad awareness of the security / technology space as a whole
• Recognized expert across multiple solution areas
• Able to present to large groups. Speaks as an authority.
• Provide mentorship to other technical staff members
• Provide technical assistance in scoping and other pre-sales activities
• Take technical leadership on complex client projects; oversee and guide work performed by other technical staff members.
• Work with vendors and practice leadership to define how specific services are scoped and delivered. 

What we're looking for

• 7+ years of related work experience (leading consulting engagements, managing technical oversight with delivery team, delivering consulting engagements around anyone SIEM solution [Splunk, Exabeam, sentinel, etc)
• Bachelor’s degree preferred
• 3-5 years of technical architecture experience with one or more SIEM and UEBA platforms (e.g. Splunk, Sentinel, Elastic, Exabeam, Securonix, QRadar, LogRhythm, etc)
• Advanced experienced with multiple security concepts and methods such as vulnerability assessments, data classification, privacy assessments, incident response, security policy creation, enterprise security strategies, architectures and governance.
• Understanding the Services business, and the impact that decisions have to an organization
• Expert knowledge around networking (TCP/IP, OSI model), operating system fundamentals (Windows, Linux), and security technologies (endpoint security, DLP, firewalls, IDS/IPS, etc.)
• Strong understanding and experience working with application programming/scripting languages (Python, JSON, Java, C#, etc), as well as Regular Expressions.
• Experience with cloud-based service architecture
• Strong understanding of regulatory requirements and compliance issues affecting clients related to privacy and data protection, such as PCI DSS, GLBA, GDPR, etc.
• Strong understanding of various security frameworks and/or methodologies (e.g. MITRE ATT&CK, NIST, etc)
• Experience with the following technologies is highly desirable: Hadoop, Apache NiFi, Apache Kafka, Tableau, StreamSets, Salt, Elastic Stack (Logstash, Elasticsearch, Kibana)
• Experience representing technical viewpoints to diverse audiences and in making timely and prudent technical risk decisions.
• Strong written and presentational skills; ability to clearly communicate complex messages to a variety of audiences
• Experience with enterprise architecture and working as part of a cross-functional team to implement solutions.
• Strong interpersonal and communication skills; ability to work in a team environment
• Ability to work independently with minimal direction; self-starter/self-motivated
• Technical writing experience
• Candidates should hold active architect level certifications of SIEM tools (e.g Splunk, Sentinel, Exabeam, Elastic etc)
• Shift flexibility, including the ability to provide after-hours support when needed
• Ability to work greater than 40 hours per week as needed
• The role demands the availability for US working hours (5PM (IST) to 2AM (IST))
• This role is Work From Office role.

What you can expect from Optiv

• A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups.
• Work/life balance
• Professional training resources
• Creative problem-solving and the ability to tackle unique, complex projects
• Volunteer Opportunities. “Optiv Chips In” encourages employees to volunteer and engage with their teams and communities.
• The ability and technology necessary to productively work remotely/from home (where applicable)

EEO Statement

Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.

Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv’s selection and recruitment activities.  For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice. If you sign up to receive notifications of job postings, you may unsubscribe at any time.