Position Title: Splunk Engineer Duration: 11-month contract Location: New York City, NY Schedule: onsite, 35-hours per week Start Date: August Summary: The IT Security SIEM (Splunk) Engineer will provide overall engineering, and administration in supporting a cloud based Splunk environment consisting of search heads, indexes, deployers, deployment servers, heavy/universal forwarders and Splunk apps spanning security, performance, and operational roles. The Engineer should be proficient with recognizing and onboarding new data sources into Splunk, analyzing the data for anomalies and trends, and building dashboards highlighting the key trends of the data. The IT Security SIEM (Splunk) Engineer should be proficient within Linux environment, edition and the following: · Good understanding and hands-on experience of designing business solutions using Splunk · Ability to Design, develop, and maintain complex Splunk queries and dashboards intended for technical and executive audiences · High level experience with dashboards, reports, alerts and managing knowledge objects · Knowledge of enterprise logging, including application, web, database, and security logging · Strong interpersonal, communication, and presentation skills · Advanced experience with Splunk data analytics, data visualization, reporting capabilities · Ability to work self-sufficiently on assigned tasks · Responsible for identifying and onboarding of log sources to help with monitoring, detection, and response · Work with stakeholders to develop requirements and deliverables Qualifications and Desired Skills: · Knowledge of Incident Response Procedures · Knowledge of Packet Analysis · Knowledge of IDS/IPS solutions and various Host-Based Tools · Experience with Log Aggregation Tools · Knowledge of patterns in network and system activity via log correlation using Splunk and supplemental tools · Verbal and written communication ability · Splunk Certified to include but not limited to Splunk Enterprise Certified Admin, Splunk Cloud Certified Admin, Splunk Enterprise Certified Architect · CASP, GCIH, GCWN, GISF, GISP, GSSP, GICSP, GSSP, SEI, CISSP, CSSLP, SSCP, CCNP, CCNP Security, CCIE Security, CEH, ECSP, MCSE About Us ECCO Select is certified as a Women-owned, Minority-owned, Small Business Enterprise. We are a talent acquisition and advisory consulting company, specializing in providing people, process, and technology solutions for our clients’ needs. ECCO Select has experience in assisting our commercial and government clients successfully manage projects and programs that transform their business operations through a variety of IT solutions. We’re the talent behind the technology. To find out more about ECCO visit www.eccoselect.com. Our CommitmentWe would love to have you join our team! ECCO Select is committed to hiring and retaining a diverse workforce. ECCO Select’s policy is to provide equal opportunity to all people without regard to race, color, religion, national origin, ancestry, marital status, veteran status, age, disability, pregnancy, genetic information, citizenship status, sex, sexual orientation, gender identity or any other legally protected category. Equal Employment Opportunity is The Law This Organization Participates in E-Verify Job Type: Contract Pay: $80.00 - $95.00 per hour Benefits: 401(k) 401(k) matching Dental insurance Health insurance Vision insurance Application Question(s): Are you able to work W2? Are you Splunk Certified? Do you have in-depth experience with designing, developing, and maintaining Splunk queries and dashboard for technical and executives audiences? Are you currently located in the NYC region and can work onsite 5-days weekly? Are you knowledgeable with intrusion detection, incident response, logging and Splunk data analytics? Work Location: In person