Splunk Security Engineer

About Raytheon Foreground Security:

Through a strategic approach to security, Raytheon Foreground Security (RFS) enables organizations to optimize their network security investment while taking a proactive approach to protecting their most important information assets from potential threats. Foreground Security provides organizations with the full lifecycle of Information Security Services including SOC operation services, architecture and engineering, assessments, training, technology resale, and implementation and integration.

Our solutions include a combination of software, services and education to help mitigate information security risks that are a part of today's business world. RFS’ Virtual SOC offerings (V-SOC) are a next generation approach to traditional managed services. While ensuring all customer data remains on premise at their facilities we leverage our client's existing security infrastructure and integrate our patent pending ATIP (Advanced Threat Intelligence Platform) to identify critical Indicators of Compromise (IOC's). This allows our customers to leverage our expertise where they need it most - in diagnosing and responding to real incidents occurring within their network infrastructure. Our incident response and forensics capabilities are exceptional and are leveraged by many fortune 500 organizations as well as State and Local and Federal Government agencies.

Responsibilities:

  • Support new client on-boarding, including:
    • Participate in activation calls and meetings 
    • Review SIEM and NSM configurations for compliance with FGS and industry best practices
    • Develop, maintain, and enhance practice documentation and tools, including methodologies, standard operating procedures, reporting templates, and sales collateral
    • Develop and organize standard toolkits and tool development repositories, and custom content

Qualifications:

Successful candidates are self starters who:

  • Have at least 2 years of experience in security operations and/or consulting or equivalent expertise
  • Can demonstrate mastery of Splunk 
  • Demonstrate skill in security engineering using one or more of the following:
    • RSA Security Analytics (formerly NetWitness)
    • Splunk
    • HP ArcSight
    • McAfee ESM (formerly NitroView)
    • Snort, Bro, Argus and/or similar open source tools

We Offer:

  • Paid professional development for all employees
  • “Work hard, play hard” culture
  • 3 weeks paid vacation
  • 100% company paid medical benefits
  • Social events – happy hours, hackathons, conferences, etc.
  • 401K with matching
  • Work with awesome, like-minded people in a dedicated cyber security company