IT Security SIEM Engineer 3
Job Description
Job DescriptionJob Title: IT Security SIEM Engineer-3
Location: 110 William Street, New York, NY 10038
Work Schedule: Monday Friday, 9:00 AM 5:00 PM (35 hours/week, 1-hour unpaid lunch)
Pay rate: $55 to $60 per hour
Position Overview
The Office for the Commissioner is seeking an experienced IT Security SIEM (Splunk) Engineer to support a high-visibility cybersecurity program. This role reports directly to the Chief Information Security Officer and plays a vital role in maintaining the security posture of ACSs enterprise-wide systems through the engineering and administration of cloud-based Splunk environments.
Responsibilities
- Engineer and administer Splunk infrastructure, including search heads, indexers, deployers, forwarders, and Splunk apps.
- Onboard and analyze new data sources; identify anomalies and trends.
- Design, develop, and maintain complex queries, dashboards, alerts, and reports for both technical and executive audiences.
- Support the full system engineering lifecycle: requirements, design, development, implementation, integration, testing, and documentation.
- Collaborate with stakeholders to define monitoring, detection, and response requirements.
- Provide knowledge of enterprise logging (web, app, database, and security logs).
- Identify and integrate log sources for enhanced monitoring and incident response.
- Assist in incident response, network packet analysis, and usage of IDS/IPS tools.
Required Skills
- Strong experience with Splunk architecture and engineering in cloud environments
- Proficiency in Linux and log correlation tools
- Hands-on experience with dashboards, knowledge objects, and visualization
- Strong analytical, communication, and documentation skills
- Ability to work independently and manage multiple priorities
Preferred Certifications
Splunk Certifications:
Splunk Enterprise Certified Admin
Splunk Cloud Certified Admin
Splunk Enterprise Certified Architect
Cybersecurity Certifications (any):
CASP, GCIH, GCWN, GISF, GISP, GSSP, GICSP, SEI
CISSP, CSSLP, SSCP
CCNP, CCNP Security, CCIE Security
CEH, ECSP, MCSE