Splunk Engineer [HYBRID]

Company: Southern California Edison
Location: Rosemead
Posted on: March 16, 2023

Job Description:

**Job Description**

**Join the Clean Energy Revolution**

Become a **Splunk Engineer** at Southern California Edison (SCE) and build a better tomorrow. In this job, you'll oversee Splunk Enterprise infrastructure and tune Splunk for optimal onboarding of data, performance, and capacity management.

As a **Splunk Engineer** , your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?

**A day in the life - Get ready to think big, work smart and shine bright!**

+ Identify gaps and areas of duplication; provides recommendations for optimization

+ Manage and maintain a complex multi-site hybrid environment and ensures the infrastructure remains available and scalable.

+ Provide technical expertise in the maintenance and expansion of IT architecture to support business needs such as software additions, large-scale data stores and cloud -based systems

+ Ensure Splunk is monitored, and effective alerting is in place to meet SLAs and required visibility

+ Manage upgrades and patching of platform to ensure endpoints identified vulnerabilities are mitigated or brought to resolution

+ Ensure the logging environment provides for effective threat detection and response in direct partnership with information security teams

+ Participate in incident management & incident response during an outage or a breach when needed

+ Interact with internal/external customers to gather requirements, perform troubleshooting and aid with the creation of Splunk search queries.

+ Diagnose, solve, and implement needed solutions for a complex environment.

+ Create documentation for any addition or change to the environment. Reviews and updates on a regular basis to ensure accuracy.

+ Ensure the security tools are supporting all compliance efforts in collaboration with auditors

+ Provide metrics for platform performance, capacity, and user management

+ Assist with compliance requests as needed

+ Collaborate with the Security team in security incident resolution and risk evaluations

+ Set and support best practices for end users and company standards.

+ Stay current on the latest industry technologies, trends, and strategies

+ Support the company's commitment to protect the integrity and confidentiality of systems and data.

**Qualifications**

**The essentials**

+ Five (5) or more years of technical hands-on experience in Cybersecurity and/or systems engineering, supporting Splunk enterprise environments.

+ Two (2) or more years' experience in progressive Splunk administration including data on-boarding, normalizing and CIM compliance, Splunk architecture and log on-boarding experience in a multisite environment.

+ Solid Linux and Windows foundation with an emphasis of Unix/Linux CLI.

+ Possess a competence in Linux to troubleshoot various aspects of the integration including operating system, application, and networking components as they relate to both Splunk and syslog implementations.

**The preferred**

+ Bachelor's degree or higher in a technical field of study.

+ Three (3) or more years' programming experience with Python, Perl, Bash, and/or Regex.

+ Proficiency with the full Splunk lifecycle, including all major components for an enterprise deployment.

+ Familiarity with Ansible and GIT

+ Ability to follow change and configuration management.

+ Strong problem-solving skills and ability to work well under pressure.

+ Experience in documenting requirements, configurations and changes as needed.

**You should know**

+ This position's work mode is **hybrid** .The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days.Unless otherwise noted, employees are required to reside in the state of California.Further details of this work mode will be discussed at the interview stage.

+ Visit our Candidate Resource (https://www.edisoncareers.com/page/show/Candidate-Resources) page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more!

+ US Citizenship required as part of Critical Infrastructure security protocols.

+ This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.

+ Relocation may apply to this position.

**Testing**

+ This position requires testing and applicants who are identified to continue through the selection process will be invited to test via email. Reference our Information Guides (https://www.edison.com/home/careers/guides-for-pre-employment-tests.html) for the following tests: Edison Individual Contributor Workstyles- Test 8203. Candidates who have previously passed these assessment(s), in some cases, may not need to retest again for this position.

**About Southern California Edison**

The people at SCE don't just keep the lights on. Our mission is so much bigger. We're fueling the kind of innovation that's changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you'll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.

At SCE, we celebrate our differences. We are a proud Equal Opportunity Employer and will not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other protected status.

We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at (833) 343-0727. #L1-KH1

Keywords: Southern California Edison, Rosemead , Splunk Engineer [HYBRID], Other , Rosemead, California