Senior Splunk / SentinelOne Siem Security Engineer

Piper Companies is seeking a Senior Splunk/ Sentinel One SIEM Engineer to join a security operations company providing a comprehensive suite of security operations solutions. Experience with Splunk SIEM and Sentinel One Siem is required. This engineer will lead a Fortune 250 company through a transformative security and technology project, leading a global team developing methodology for SIEM migration best practices, and have the opportunity to learn cutting edge technology to determine a suitable detection strategy, helping to protect customers from threats, by designing and implementing correlation rules.

Responsibilities of the Senior Splunk/ Sentinel One SIEM Engineer include:

• Evaluating current Splunk instances and content at a major enterprise retail customer
• Migrating data sources from Splunk instances to SentinelOne AI SIEM
• Migrating content to SentinelOne AI SIEM
• Leading offshore team also performing migration tasks
• Integrate SentinelOne with other security tools to build a comprehensive security monitoring ecosystem 
• Design and maintain S1 data models to support security use cases and compliance reporting 
• Develop custom threat detection rules and correlation searches in Splunk 
• Configure and tune SIEM alerts to reduce false positives and enhance detection efficacy 
• Provide technical expertise during security incidents and coordinate response activities 

Qualifications for the Senior Splunk/ Sentinel One SIEM Engineer include:

• Bachelor's degree in Cybersecurity, Information Security, or related field 
• 9+ years of security engineering experience with 5+ years of advanced Splunk and SentinelOne implementations
• Splunk Certified Architect or Splunk Certified Enterprise Security Admin certification 
• SentinelOne certifications and/or SentinelOne University experience
• Strong knowledge of SPL query language and advanced search techniques 
• Experience creating custom Splunk dashboards, reports, and visualizations 
• Demonstrated expertise in security monitoring and SIEM technology 
• Proficiency with Splunk administration and performance tuning
• SentinelOne exposure is highly desired

Compensation for the Senior Splunk/ Sentinel One SIEM Engineer includes:

• Salary: $140,000 - $165,000
• 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed , Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment) , Group Term Life, Short-Term Disability, Long-Term Disability , Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness, Participation in the Discretionary Time Off (DTO) Program,11 Paid Holidays Annually 

Keywords: #LI-RL1 #LI-Remote 

SIEM, SOAR, XSOAR, Detection, Automation, scripting, ingestion, rules, alerts, IR, security automation orchestration and response, Defender, Sentinel one, Splunk, Migrate, Migration, implement, implementation, logs, rules, alerts, query, dashboards,