Splunk Support Engineer

Insight Global is seeking a Splunk Security Support Engineer to join one of our large utility clients. This is a mid to senior level resource that should have exposure in both IT and OT environments. Some key duties that this individual will be responsible for include designing, implementing, and managing Splunk solutions across IT and OT environments. Monitoring and analyzing security events to identify potential threats and vulnerabilities. Develop and maintain Splunk dashboards, reports, and alerts to improve situational awareness. Collaborate with IT and OT teams to ensure the integration and proper functioning of Splunk within the infrastructure. Conduct regular system audits and compliance checks in line with industry standards. Support standard patching/upgrade/break-fix activity and leverage vendor support as needed for investigative purposes. Provide technical support and training to staff on Splunk functionalities and best practices. Participate in the planning and execution of Splunk-related projects, including upgrades and expansions

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .

Required Skills & Experience
- Bachelors degree in Information Technology, Cybersecurity, or a related field.
- 5-7 years of experience in security engineering, with a focus on Splunk in IT and OT environments.
- Proficiency in Splunk administration, configuration, and advanced searching.
- Strong understanding of both Splunk Enterprise and Splunk for Industrial IoT.
- Experience with Tanium and/or Industrial Defender for endpoint security and operational technology monitoring.
- Solution oriented and self motivated to share
- Strong analytical skills for threat detection and response.
- Excellent communication and collaboration abilities.
- Detail-oriented with a focus on security and compliance.

Nice to Have Skills & Experience
- Splunk certifications (Spunk Certified Architect, Splunk Certified Enterprise Security Admin, Certifications in Tanium and/or Industrial Defender, etc.)
- Experience working in the utility industry
- Experience or familiarity with Tanium and/or Industrial Defender
- Knowledge of the Utility industrys security requirements and regulatory standards.
- Familiarity with regulatory compliance standards relevant to the Utility industry, such as NERC CIP, is highly desirable.
- Experience with scripting and automation for security tasks is a plus.

Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.