Previous Job
Senior Technical Analyst (Splunk)
Ref No.: 18-08352
Location: Jacksonville, Florida
Position Type:Contract
Start Date: 09/28/2018
ARC Group has an immediate opportunity in sunny Jacksonville, FL for a Senior Technical Analyst (Splunk). This is starting out as a 6-month project with strong potential to extend longer. This is a great opportunity to work with a team of talented developers on several exciting new projects.
Candidates must be eligible to work for any employer without sponsorship, and able to work as our W2 employee.

The Senior Technical Analyst plays a key role in ensuring our logging and monitoring tool (SPLUNK) and associated environment are technically engineered. It is heavily technical involving tuning our logging and monitoring system events, configuration issues, storage, administrative security oversight and associated investigative actions to identify aberrant system and/or user behavior and to protect against insider threat. It is a role that is paramount to the integrity and safety of our customers' personal/sensitive data and our success as an organization.

Qualifications, Experience & Skills
  • Bachelor's degree in a related field or equivalent experience 4+ years of related Information Security engineering and infrastructure support experience
  • Excellent technical computing and network security skills
  • Excellent understanding of common web-based vulnerabilities
  • Strong knowledge of IDS/IPS, packet/traffic analysis and related tools
  • Systems administration background preferred
  • Certifications, such as CISSP preferred
  • Technologies SIEM, such as Splunk Perimeter Defenses -- IDS/IPS Malware/Anti-Virus, such as BIT9/Carbon Black, Symantec Defense, etc.
  • Network vulnerability scanners and technologies
  • Firewall administrative skills
  • Data Loss Prevention tools
  • Strong technical knowledge of security architecture, tools and controls with specific demonstrated experience in proactive detection, mitigation, and resolution of advanced cyberattacks and/or threats
  • Strong technical knowledge of security infrastructure including security firewalls, data loss prevention, encryption, and end point protection appliance
  • Demonstrated knowledge of information threat analysis and detection concepts and principles and impact
  • Knowledge of network infrastructure including routers, switches, firewalls and associated network protocols and concepts
  • Strong technical knowledge of current systems, software, protocols and standards (including TCP/IP and network administration/protocols)
  • Experience developing, documenting and maintaining security procedures
  • In-depth knowledge of operating systems and security applications
  • Ability to adapt to a rapidly changing environment and quickly identify new trends and industry changes specific to security and advanced cyberattacks
  • High critical thinking skills required to evaluate complex, multi-sourced security intelligence information, analyze and confirm root cause, an independently, or at times with the assistance of a Senior IT Threat Analysts or third-party vendor, identify mitigation alternatives and solutions that safeguard our technical environment.
Maintain and provide security engineering for the Security Incident and Event Management System (SPLUNK)