Splunk Cybersecurity Defense Analyst Jobs (NOW HIRING)

Our Partner is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to address emerging threats. In support of the customer's strategic direction, They are looking for qualified Cybersecurity Technical Project Manager with experience in Agile Continuous development/Continuous Improvement pipelines, and Computer incident Response (CIRT), who can support their customer as a Monitoring, Metrics, and Requirements Team (MMRT) lead. The MMRT lead works with a cross functional team supporting the USG Security Monitoring and Incident Response (SMIR) group.
Responsibilities

• Lead the MMRT with implementing the customer requirements to increase visibility in the organization in accordance with the customer's continuous security monitoring strategy
• Lead collaboration efforts with the contemporary team leads to help translate the requirements for successful advancement of the detection and response initiatives across the large incident response group
• Leverage experience with NIST Risk Management Framework/Cyber Security processes to guide other teams to align with provisioning initiatives for Office of Management and Budget (OMB) Memorandum M21-31Minumim Logging requirements
• Develop and report metrics for security performance of the existing security monitoring initiatives and help develop new requirements to expand capabilities
• Maintain MMRTs Kanban for Agile project management terms and terminology
• Utilize strong written and verbal communication skills to coordinate with team members and management and explain technical issues
• Review reports and briefs to provide an accurate depiction of the current threat landscape and associated risk
• Track cross team projects in support of provisional and onboarding efforts into the SMIR

• US Citizenship
• Active TS/SCI Clearance
• Must be able to obtain DHS Suitability
• Bachelor's degree in information security, cyber engineering, or a related discipline is required [12 years of experience (for a total of 22 or more years) may be substituted for a degree.]
• 10+ years directly relevant experience
• Experience working across multiple functional teams and explaining technical data
• Understanding of Kanban methodology and Agile terms and terminology. Strong written and verbal communication skills to coordinate with team members and management and explain technical issues
• Collect information updates from team members, update the required presentations, and present the status on behalf of the team
• Possesses strong leadership, project management, and familiarity with scaled agile framework or agile concepts
• Analytical and problem-solving skills to handle any issues that occur during the project lifecycle
• Organization and time management skills to keep projects on track and within budget
• Excellent resource planning and task scheduling skills
• Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architectures
• Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology)
• Current experience with cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks

• Experience as a detection analyst, threat hunter, or incident responder in a CIRT/SOC
• Experience using multiple Security Information and event Management (SIEM) platforms (e.g Splunk, ELK...)
• Experience supporting DHS, Federal Civil, Intelligence and/or DoD Customers
• Experience with Agile development or Scaled Agile Framework (Safe), JIRA, and Kanban methodologies for managing projects
• Prior experience with data visualization products such as Analyst Notebook is desired

• DoD 8570.1-M Compliance at IAT/IAM Level II (e.g., Certified Information Systems Security Professional (CISSP))
• Cisco Certified Network Professional (CCNP), Cisco Certified Security Professional (CCSP)
• Project Management Professional
• Scaled Agile Framework (SAFE)
• Splunk Certifications (Splunk Certified Cybersecurity Defense Analyst, Splunk Enterprise Security Certified Admin, Splunk Enterprise Security Certified Admin)
• Incident Response Certification (GCIH)