Charles Schwab Sr. Staff - Splunk Security Engineer in Fort Worth, Texas

Description:

Fort Worth - TX, TX13601F, 13601 North Freeway, 76177

Christine Marie Hill

20180420-2774

We believe that , when done right, investing liberates people to create their own destiny. We are driven by our purpose to champion every client’s goals with passion and integrity. We respect and appreciate the diversity of our employees, our clients, and the communities we serve. We challenge conventions strategically to create value for our clients, our firm and the world. We live and bring to life the concept of ‘own your tomorrow’ every day. We champion our employee strengths, guide their development, and invest in their long-term success. We hire optimistic, results-oriented, curious, innovative, and adaptable people with the desire to help our clients and one another succeed.

As a company, we were established by Chuck at http://www.aboutschwab.com/about/leadership/charles_schwab over 40 years ago to champion Main Street over Wall Street, and to help Americans transform themselves from earners to owners. Through advocacy and innovation, we work to make investing more affordable, accessible and understandable for all. As we enter our fifth decade, we are looking for talented, innovative and driven people who believe they can help themselves, and our clients, create a better future.

Our Opportunity:

Charles Schwab’s Cybersecurity Services organization is seeking a Senior Information Security Engineer (Splunk)

What you’ll do:

  • Designing, engineering, configuring and administering Splunk content

  • Assisting in the proper operation and performance of Splunk, plug-ins, loggers and connectors

  • Building Splunk reports

  • Developing dashboards with visual metrics for stakeholders

  • Defining strategy and design around data collection, aggregations, and summarization processes

  • Integrating external data sources into Splunk

  • Enforcing best practices related to summarizing and querying data

  • Developing advanced scripts for the manipulation of multiple data repositories to support analyst requirements

  • Partnering with other enterprise teams to support data capture and advanced data analytics and forecasting efforts to support proactive identification of issues

  • Providing recommendations and implement changes to optimize Splunk products in the customer environment

  • Designing the Splunk system solution to meet growth while maintaining a balance between performance, stability, scalability and agility

  • SIEM content management

  • Ability to develop use cases, search and reporting scripts

  • Create, optimize, and continuously evaluate security monitoring content (correlated searches/alerts) on Splunk ES.

  • Configure Splunk integration points and verify functionality in the technical evaluation environment

  • Document build procedures and customizations to provide inputs to functional and operational requirements

  • Demonstrate innovative influence for projects

  • Problems faced are difficult and often complex

  • Strong understanding of root causes of malware infections and proactive mitigation

  • Strong understanding of lateral movement and footholds

  • Strong understanding of data exfiltration techniques. Demonstrated ability in critical thinking, problem solving, and analytics

  • Enjoy analyzing patterns looking for outliers

  • Enjoy creating ways to find needles in haystacks

  • Have real world experience analyzing complex attacks and understand TTPs of threat actors

  • Define relationships between seemingly unrelated events through deductive reasoning

  • Experience in network/host based intrusion analysis, malware analysis, forensics, and cyber threat intel

  • Knowledge of advanced threat actors and complex attacks

  • Possess excellent writing skills and the ability to communicate to technical and executive level staff

  • Quick study with new tools

  • Knowledge and experience with Splunk and other cyber tools

What you have:

  • Splunk Search Language (SPL) expert with an extensive experience in security operations (+3 years).

  • High level skills: Splunk, SPL & ESS

  • Data Correlation experience

  • Incident Response - emphasis in Packet Level Analysis

  • Malware Investigations

  • Security Testing and Evaluation

  • Network Security with emphasis in Cisco IOS

  • UNIX and Linux

  • PCI Data Security Standard

  • McAfee EPO / HBSS Suite

  • Vulnerability scanning – Qualys

  • ArcSight

  • ProofPoint

  • RSA Security Analytics

  • Ticketing Systems - Remedy, RTIR, JIRA

  • Microsoft Office Suite

  • Ability to perform shell, Python and PERL scripts

You demonstrate these behaviors:

Innovative: Defines a compelling vision of the future, and develops breakthrough ideas, whether big or small, that support that vision

Talent Magnet: Seeks out and attracts strong internal and external talent

Overcomes Barriers: Takes responsibility for addressing obstacles that hinder our people and our business

Challenger: Takes risks when the opportunity warrants it and the potential downside is understood; is no disheartened by failure but uses it as an opportunity to learn

Emotionally Mature: Demonstrates strong self-awareness and ability to adjust to the emotion & drive of others; embraces others’ perspectives and recognizes limits of own point of view

What you’ll get:

  • Comprehensive Compensation and Benefits package

  • Financial Health: 401k Match, Employee Stock Purchase Plan, Employee Discounts, Personalized advice, Brokerage discounts

  • Work/Life Balance: Sabbatical, Paid Parental Leave, New Mothers returning to work Program, Tuition Reimbursement Programs, Time off to volunteer, Employee Matching Gifts Program

  • Everyday Wellness: Health and Lifestyle Wellness Rewards, Onsite Fitness Classes, Healthy Food Choices, Wellness Champions

  • Inclusion: Employee Resource Groups, Commitment to diversity, Strategic partnerships

  • Not just a job, but a career, with an opportunity to do the best work of your life

Learn more about Life@Schwab at http://www.aboutschwab.com/careers/lifeatschwab/" .

Charles Schwab & Co., Inc. is an equal opportunity and affirmative action employer committed to diversifying its workforce. It is Schwab's policy to provide equal employment opportunities to all employees and applicants without regard to race, color, religion, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), gender identity or expression, national origin, ancestry, age, disability, legally protected medical condition, genetic information, marital status, sexual orientation, protected veteran status, military status, citizenship status or any other status that is protected by law. Schwab also does not discriminate against applicants or employees because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. At Schwab, we believe that every employee, through their diverse abilities and experiences, can contribute to our growth, innovation and client loyalty. We embrace diversity and are committed to providing equal opportunity to all employees and applicants. If you have a disability, and require reasonable accommodations in the application process, call Human Resources at 800-725-3535. We will be happy to assist you. Schwab will only share your accommodation request with those individuals who have a specific need to know. The request for an accommodation will not affect Schwab's hiring decisions. All other submissions should be performed online.

Job Specifications

Relocation Offered?: No

Work Schedule: Days

Languages: English - spoken

Current Licenses / Certifications: None

Relevant Work Experience: IT-Other Specialty Engineering-6+ yrs

Position Located In: TX - Ft Worth, TX - Westlake

Education: BA/BS

Job Type: Full Time

Category:Information Technology

Activation Date: Friday, June 29, 2018

Expiration Date: Saturday, September 1, 2018

Apply Here