We are hiring for a Cyber Security Analyst/Engineer to join forces with a team supporting one of our Federal customers. They will assist in implementing Federal risk and compliance standards in a Splunk Cloud environment. The primary focus is implementing and tailoring the premium Splunk apps created by Qmulos. This includes onboarding and normalizing new data sources for CIM compliance and populating data models. The Analyst will use data collected from a variety of cyber defense tools to analyze events that occur within their environments for the purpose of mitigating threats. The team leverages the customer's enterprise logging system to implement guidance from OMB M-26-14.
This opportunity is 100% remote.
Work You'll Do:- Measure compliance with OMB Memorandum M-26-14 once the logging reference architecture (LRA is released) and provide recommendations for improvement.
- Assess and monitor security data feeds and improve coverage of key security data sources.
- Provide subject-matter expertise to support log monitoring and normalization.
- Create and update reports and alerts to assess data quality and compliance with security requirements.
- Collaborate with SOC, IT, and application teams to identify and address issues.
- Provide regular reports to senior management and data owners on the status of monitoring and M-26-14 implementation.
- Write documentation and standard operating procedures (SOPs) for custom data sources and application configurations.
What You Have:- US Citizenship is Required.
- 4+ years of experience in the cyber security field
- Bachelor's degree required, ore equivalent years of experience (4 years, 8 years+ total)
- Experience with Qmulos apps for Splunk a big plus.
- Experience with Splunk Enterprise or Splunk Cloud preferred.
- Experience with Red Hat Enterprise Linux administration.
- Experience with log management and analysis.
- Familiarity with OMB Memorandum M-26-14.
- Ability to track and make progress on multiple tasks in parallel.
- Ability to collaborate with multiple teams and provide clear, concise directions during technical troubleshooting.
- Splunk Certifications are highly desired in this role.
What We Offer:- 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed
- Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment)
- Group Term Life, Short-Term Disability, Long-Term Disability
- Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness
- Participation in the Discretionary Time Off (DTO) Program
- 11 Paid Holidays Annually
$80,000 - $100,000 a year
UltraViolet Cyber maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect our company's differing products, services, industries and lines of business. Candidates are typically placed into the range based on the preceding factors.
