General Dynamics Information Technology (GDIT) is looking for a Splunk/SOAR Engineer to lead the development of automation capabilities that streamline our incident response and enhance threat detection. You will collaborate closely with cross-functional teams to integrate solutions into our security ecosystem.
What You'll Do
- Lead the development and deployment of Splunk SOAR automation capabilities.
- Collaborate with cross-functional teams including threat analysts, incident responders, and IT administrators to integrate SOAR with existing security tools and workflows.
- Drive the innovation and optimization of security automation processes.
- Utilize advanced Splunk SOAR automation tools, scripting languages (Python, JavaScript), and cybersecurity frameworks.
- Manage parallel tasks and accurately document issues and resolutions.
- Participate in an on-call rotation for after-hours escalations.
What We're Looking For
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- 5+ years of related experience in cybersecurity engineering with a focus on automation and security orchestration.
- Proficiency in Splunk SOAR, Python scripting, incident response, threat analysis, and cybersecurity frameworks.
- Ability to work onsite occasionally and travel as needed.
- Understanding of information systems and architectures.
- CompTIA Security+ certification (or ability to obtain within the first 6 weeks).
- Sound analytical problem-solving and documentation skills.
- Knowledge of network vulnerability scanning platforms (Qualys, Nessus, etc.).
- Knowledge of Routers, Switches, Fortinet proxy filtering, Firewalls, and authorization boundaries.
- Knowledge of Microsoft Windows networks.
- US Citizenship is not required.
Nice to Have
- Splunk Enterprise Certified Admin certification.
- Active Secret Clearance (or higher).
- Knowledge of AWS and Azure cloud computing.
- Knowledge of NextGen Security Products.
- Knowledge of current IT security best practices.
- Knowledge of system administration, network and operating system hardening techniques, firewall/policy rulesets.
Technical Stack
- Splunk SOAR
- Python, JavaScript
- Cybersecurity frameworks
- Network vulnerability scanning platforms (Qualys, Nessus)
- Routers, Switches, Fortinet proxy filtering, Firewalls
- Microsoft Windows networks
- AWS, Azure
Team & Environment
You will collaborate with cross-functional teams including threat analysts, incident responders, and IT administrators.
Benefits & Compensation
- Compensation: $110,500 - $149,500
- AI-powered career tool that identifies career steps and learning opportunities.
- An internal mobility team focused on helping you achieve your career goals.
- Comprehensive benefits and wellness packages.
- 401K with company match.
- Competitive pay and paid time off.
- Full-flex work week to own your priorities.
- Award-winning culture of innovation and a military-friendly workplace.
- Variety of medical plan options, some with Health Savings Accounts.
- Dental and Vision plan options.
- Paid time off plans including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave.
- Short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance.
Work Mode
This position is remote within the state of Louisiana. Occasional onsite work and travel may be required.
General Dynamics Information Technology is an Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans.
