"Alerted.org

Job Description

**Note:** This position will follow our hybrid work model, we expect the selected candidate to be in the office 2-3 days a week at the St. Petersburg, FL Corporate Office location.

Description:

The financial services industry is constantly under attack by sophisticated cyber adversaries that range from nation states to criminals. In response, the Raymond James Cyber Threat Center (CTC) is charged with ensuring all equities are secure against all tiers of adversaries. We are the central hub for Computer Network Operations and are on the front lines of security incident response, threat hunting, and intelligence. You'll be working with emerging technologies to solve challenging security problems in a fast-paced and continuously evolving environment, while helping steer the direction and evolution of the team. This highly visible team within the organization evaluates threats to the environment and dynamically adjusts to the ever-changing threat landscape by applying practical security knowledge to developing new detective measures to protect the firm.

Job Summary:

The Senior Splunk Engineer is a primary member of the CTC who serves as a Splunk subject matter expert responsible for the development, creation, and maintenance of advanced Splunk content used in support of the Incident Response (IR), HUNT, Cyber Threat Intelligence, and Cyber Crime operations. The Sr. Engineer is also part of Raymond James Splunk administration team, responsible for the operation and maintenance of Raymond James Splunk cloud environment that includes search heads, indexers, heavy/universal forwarders, and the enterprise syslog environment.

Responsibilities:

+ Provide engineering and administration for a large distributed Splunk environment consisting of search heads, indexers, deployers, deployment servers, and heavy/universal forwarders.

+ Administer the global Syslog-NG environment.

+ Develop, create, and maintain advanced Splunk content.

+ Think outside the box to rebuild Splunk workflows using best practices to improve SVC utilization.

+ Configure, administer, and tune Splunk Cloud environment.

+ Onboard new Splunk event sources, data feeds, apps, and devices.

+ Maintain and review data integrity of Splunk data feeds into the Splunk.

+ Act as a Splunk Subject Matter Expert for team.

+ Shares in a weekly on-call rotation and acts as an escalation point for major incidents and associates of Raymond James.

Skills/Previous Experience:

+ Three (3) to five (5) years of related experience in Splunk engineering, administration, and content development is required.

+ System administrator experience in Linux, Windows, or OSX operating systems.

+ System administrator experience in maintenance and management of enterprise syslog environment.

+ Knowledge of networking and the common network protocols.

+ Experience with development of complex Splunk analytics.

+ Familiar with interacting with a variety of APIs and using an API platform such as Postman, Insomnia, or Hopscotch to develop and test data integrations.

+ Demonstrated ability to create complex scripts, develop tools, or automate processes in PowerShell, Python or Bash.

Licenses/Certifications:

One or more of the following certifications or the ability to obtain within 1 year:

+ SIE (Securities Industry Essentials)

+ Splunk Cloud Certified Admin

+ Splunk Certified Architect

+ Splunk Certified Consultant

+ CISSP: Certified Information Systems Security Professional

+ AWS Certified Cloud Practitioner or AZ-900

+ CCNA: Cisco Certified Network Associate

Education

Bachelor’s: Computer and Information Science, Bachelor’s: Information Technology, High School (HS) (Required)

Work Experience

General Experience - 3 to 6 years

Certifications

Travel

Less than 25%

Workstyle

Hybrid

At Raymond James our associates use five guiding behaviors (Develop, Collaborate, Decide, Deliver, Improve) to deliver on the firm's core values of client-first, integrity, independence and a conservative, long-term view.

We expect our associates at all levels to:

• Grow professionally and inspire others to do the same

• Work with and through others to achieve desired outcomes

• Make prompt, pragmatic choices and act with the client in mind

• Take ownership and hold themselves and others accountable for delivering results that matter

• Contribute to the continuous evolution of the firm

At Raymond James – as part of our people-first culture, we honor, value, and respect the uniqueness, experiences, and backgrounds of all of our Associates. When associates bring their best authentic selves, our organization, clients, and communities thrive. The Company is an equal opportunity employer and makes all employment decisions on the basis of merit and business needs.

\#LI-NM1