Previous Job
Splunk Engineer
Ref No.: 17-03924
Location: New York, New York
Splunk Engineer
1 year contract role
Downtown NYC

Please send resumes to

Role Description: This engineer will primarily be focused on the Splunk platform within the Technology & Information Risk Cyber Security Solutions Engineering Team. This role seeks someone who can provide the highest level of security consultancy and engineering oversight of our Security Analytics platforms.

- Splunk Developer to support Big Data Analytics

- Seasoned Splunk Developer with hands on Analytics Development experience

- Familiarity and working knowledge of "SPL Development Lifecycle " - Producing analytics in Splunk, Visualizing and dashboarding Big Data (analysis and enrichment of data as needed), Ability to develop summary view for Big Data content management and dashboarding

- Must Have: Experience with Enterprise Security Model of Splunk - Specifically Incident Management

- Cyber Security Experience/Knowlege is a huge plus but not a requirement

Day to Day:
  • Work with global colleagues from both internal and external teams throughout the organization to provide solutions via ongoing communications and consistent processes
  • Onboard and cleanse data sources using CIM best practices for field extraction and Splunk Data Model optimizations
  • Complete environment tooling, configuration, build, and documentation tasks with a focus on quality and ongoing platform supportability
  • Provide support for production platforms through health monitoring and root cause troubleshooting
  • Develop tools to automate/improve existing processes and procedures in areas such as configuration management and runtime tooling
  • Assist in the design, architecture and implementation of Security Analytics infrastructure with a focus on a wide variety of areas spanning: performance analysis, platform optimization, monitoring/metrics gathering to facilitate reporting/tuning, upgrades, process management, capacity planning, and relevant documentation using the clients tools in a fashion consistent with existing policies and procedures
  • Participate in technology evaluations and play an active role in suggesting improvements based on technology trends, best practices, and industry standards.
Must Haves:
  • Customer-focused Splunk Enterprise Security SIEM engineering background
  • SME knowledge of ES v4.7
  • Direct experience with Splunk Engineering and data integration
  • Prior SIEM data modelling experience on similar platform at scale (>50 servers)
  • Scripting and development skills in Python/Perl with deep comprehension of regular expressions
  • Broad Linux/Unix Systems Administration experience
  • Exceptional communication/interpersonal abilities as a flexible, self-driven team member
  • Strong task management and organizational skills to insure balance and timely completion of ongoing efforts
  • General networking and security knowledge in areas such as Firewalls, TCP/UDP, Routing/Switching, DNS, NAT, Packet Tracing and Analysis, etc.
  • Ability to demonstrate broad exposure to various technologies
  • Preferably in a global environment in the finance industry or an industry at a similar scale
  • Splunk Enterprise platform integration and deployment experience
  • Big Data experience with tools such as Kafka, NiFi, Storm, Grok, Parquet, Spark, HDFS
  • Familiarity with key security events on common platforms
  • Knowledge or experience with security areas such as Indicators of Compromise (IoC)
  • Industry certifications such as CISSP, SANS, CeH, etc.
  • SDLC experience using systems such as JIRA and Git/SVN
  • Familiarity with DevOps style content management platforms such as Audible/Puppet/Chef
  • Experience authoring security policy and security best practice documentation
  • Software development experience with Object Oriented principles in Python/Java/C++

NTT DATA Services is a leading IT services provider and global innovation partner with 130,000 professionals based in over 50 countries. NTT DATA recently acquired Dell Services. NTT DATA Services emphasizes long-term commitment and combines global reach and local intimacy to provide premier professional services, including consulting, application services, business process, IT outsourcing, and cloud-based solutions. We are a part of NTT Group, one of the world's largest technology services companies, generating more than $100 billion in annual revenues and partner to 80% of the Fortune 100. Visit to learn how our consultants, projects, managed services, and outsourcing engagements deliver value for a wide range of businesses and government agencies.

The Company is an equal opportunity employer and makes employment decisions on the basis of merit and business needs. The Company will consider all qualified applicants for employment without regard to race, color, religious creed, citizenship, national origin, ancestry, age, sex, sexual orientation, genetic information, physical or mental disability, veteran or marital status, or any other class protected by law. To comply with applicable laws ensuring equal employment opportunities to qualified individuals with a disability, the Company will make reasonable accommodations for the known physical or mental limitations of an otherwise qualified individual with a disability who is an applicant or an employee unless undue hardship to the Company would result.