Splunk SIEM Engineer II

About The Position

Requirements

• Six or more years of experience in technical field, computer science, engineering, network systems or other relevant experience.
• A degree(s) in computer science, information technology, telecommunications, engineering, or relevant field may be substituted per LCRA guidelines for certain years of experience.

Nice To Haves

• SIEM admin certified
• Linux Intermediate Level
• Knowledge of Cyber Security and experience in utilizing SIEM to monitor, set up alert for security related events
• Knowledge of EMS/Supervisory Control and Data Acquisition (SCADA) applications or prior work experience in a mission critical or controls environment
• Prior work experience in the NERC CIP regulated environment

Responsibilities

• Responsible for administering, configuring and maintaining complex SIEM systems, both backend and frontend in the EMS and SUBWAN environments.
• Performs security vulnerability evaluations and applies system updates, if applicable.
• Responsible for setting up use cases, on-boarding logs, dashboards, and alerts on SIEM to support business and NERC CIP needs.
• Coordinates with other teams annually or on-demand perform nmap, vulnerability scans against the system.
• Proactively monitors, analyzes, and reviews security related log and SIEM alerts from multi-platform EMS computing environment and work with all stakeholders to ensure all cyber security related cases will be taken care of and addressed properly.
• Research, analyzes, and implements software patches or hardware changes to fix any SIEM deficiencies.

Benefits

• Competitive salary & medical, dental, vision and legal insurance
• Paid time off, including time for vacation, sick and family care leave
• 401(k) match up to 8% that includes a student loan 401(k) contribution program option
• Life and disability insurance
• Wellness program including wellness incentive
• Extensive learning & development programs