The role is responsible for engineering, monitoring, and optimizing the firm's SIEM ecosystem including Splunk and Microsoft Sentinel to ensure data quality and platform resiliency
Job Summary
The role is responsible for engineering, monitoring, and optimizing the firm's SIEM ecosystem including Splunk and Microsoft Sentinel to ensure data quality and platform resiliency.
Candidates must possess hands-on experience with large-scale environments and the ability to troubleshoot complex ingestion and infrastructure performance issues.
This position offers industry-leading benefits, access to paid time off, and eligibility for an annual discretionary award based on individual and company performance.
Matching Summary
The role is responsible for engineering, monitoring, and optimizing the firm's SIEM ecosystem including Splunk and Microsoft Sentinel to ensure data quality and platform resiliency.
Salary
Base: $150,000.00 - $190,700.00 annualized; Bonus: Discretionary incentive eligible; Benefits: Industry-leading benefits and paid time off
Skills & Requirements
Must-have
6+ years Security Operations experience
Splunk Enterprise/Cloud engineering
Microsoft Sentinel platform management
Kafka and Cribl pipeline troubleshooting
CIM/OCSF/CEF data normalization
SPL and KQL query development
Nice-to-have
Offensive security tooling integration
Data science statistical methods
Cloud environment threat hunting
Splunk KV store maintenance
AI enabled Security Operations awareness
SRE-style observability patterns
Key Requirements
6+ years in Security Operations or SIEM Engineering
Experience with Kafka, Cribl, Databricks, Hadoop, Python, SQL
Ability to manage competing priorities across distributed teams