The Information Security Engineer (Splunk SIEM) is responsible for the design, implementation, operation, and optimization of the organization’s Splunk-based log management and Security Information and Event Management (SIEM) platform. This role focuses on building and maintaining Splunk Enterprise Security to provide actionable visibility into security events across data center and cloud infrastructure and application environments.

The Information Security Engineer is also responsible for supporting overall security operations by implementing, operating, monitoring and administering other tools and processes in order to protect company information in accordance with the Information Security Program and related policies. The engineer performs Incident Response and investigates and assesses threats and responds to enterprise security events and incidents.

Key Responsibilities

• Design, implement, and maintain the Splunk platform, including Splunk Enterprise, Splunk Enterprise Security (ES), and related apps.
  • Design and manage forwarder architecture (UF vs HF), indexer architecture and load balancing, and manage system capacity.
  • Work with desktop, infrastructure, Devops, and cloud engineering teams to ensure the SIEM is ingesting data from all key systems.
  • Manage logging system and SIEM performance issues.
  • Manage SIEM capacity planning, licensing, and data retention.
  • Implement SIEM security rules, dashboards and reporting to meet business objectives to identify system and user behavior risks and indications of attack and compromise.
  • Integrate the SIEM with SOAR, ticketing, and incident response workflows where applicable.
• Apply AI to the identification of risks and indications of attack/compromise.
• Establish and maintain strong working relationships with the departments involved with information security (Operations, Development, IT, Legal, Human Resources, and others)
• Participate in the development of Information Security Program policies, processes, procedures, standards, guidelines, and the training of staff.
• Recommend and implement improvements to the effectiveness of the Information Security Program.
• Provide direction to employees according to established policies and management guidelines for system, application and network security.
• Implement, operate, manage, monitor and improve technical security controls and tools across the enterprise, including SSO, AV, IDS, vulnerability scanning, WAF, code scanning, web proxies, encryption and audit log monitoring.
• Perform periodic internal security reviews and risk assessments; support internal and external information security audits.
• Respond to security incidents, conduct root cause analysis of incidents, recommend corrective actions and ensure corrective action completion.
• Document information security monitoring, scanning and testing procedures.
• Keep up to date with the security field, including emerging vulnerabilities.
• Perform other duties to support the technical and operational security of the organization as required.

Qualifications

• Bachelor’s degree in an IT related field or equivalent experience and 3-5 years of experience in working in IT security, IT systems or network engineering, software development, QA, or a related role.
• Preferred certifications: Splunk Certified Admin (either Enterprise or Cloud)
• Other desired certifications: one or more of the following: CISSP, CISM, SSCP, CCSP, or Security+.
• Experience using, configuring and managing Splunk Cloud and/or Splunk Enterprise and Splunk Enterprise Security.
• Proficiency with Splunk Query Language, Splunk Processing Language and creating dashboards and applications.
• Experience with scripting, automation and APIs.
• Working knowledge of, and experience in desktop and server environments, including Mac, Windows, and Linux operating systems.
• Understanding of Application Security and Data Security for applications and AI, such as the OWASP Top 10 and the OWASP Top 10 for Generative AI.
• Experience with implementation of SSO with SAML, encryption, and key management.
• Flexibility to work off-hours to support global project teams and maintenance windows.
• Ability to support 24x7 on-call for incident response on a rotating basis.
• Experience working within and implementing polices for a security framework such as ISO 27001, NIST, CIS 20, or PCI.
• General knowledge of security implications of threats and vulnerabilities related to networks, servers, operating systems, applications, and databases.

Competencies

• Strong analytical problem-solving skills and attention to detail.
• Organization, Time Management & Prioritization - Self-starter that focuses on key priorities; plans, organizes, schedules and executes on tasks and projects in an efficient and productive manner.
• Ability to form productive relationships across the organization to accomplish information security objectives.
• Ability and willingness to learn all aspects of the information security field.
• Professional verbal and written communication skills in English.
• Expresses ideas using clear, effective, and efficient language. Listens patiently and attentively. Adapts to the purpose of the communication with appropriate style, substance, detail, confidence and channel. Possess the ability to manage multiple channels of communication simultaneously; phone, email, tickets, and chat.
• Able to assess, document, and prioritize identified security flaws and vulnerabilities based on risk.

Nextiva DNA (Core Competencies)

Nextiva’s most successful team members share common traits and behaviors:

• Drives Results: Action-oriented problem solvers who quickly bring clarity and simplicity to ambiguity, challenge the status quo, and lead meaningful change; celebrating wins to fuel momentum. They act swiftly and pragmatically, learning and improving as they go.
• Critical Thinker: Data-driven, forward-thinking individuals who identify key drivers, anticipate risks, and deliver clear recommendations. They confidently leverage AI and automation to reduce friction, improve decision-making, and focus on higher-value work.
• Right Attitude: Collaborative, competitive, and resilient team players who jump in to solve tough problems, learn from setbacks, and foster a culture of service, respect, and care for customers and teammates.

Total Rewards

Our Total Rewards offerings are designed to allow our employees to take care of themselves and their families so they can be their best, in and out of the office.

Our compensation packages are tailored to each role and candidate's qualifications. We consider a wide range of factors, including skills, experience, training, and certifications, when determining compensation. We aim to offer competitive salaries or wages that reflect the value you bring to our team. Depending on the position, compensation may include base salary and/or hourly wages, incentives, or bonuses.

• Medical 🩺 - Medical insurance coverage is available for employees, their spouse, and up to two dependent children with a limit of 500,000 INR, as well as their parents or in-laws for up to 300,000 INR. This comprehensive coverage ensures that essential healthcare needs are met for the entire family unit, providing peace of mind and security in times of medical necessity.
• Group Term & Group Personal Accident Insurance 💼 - Provides insurance coverage against the risk of death / injury during the policy period sustained due to an accident caused by violent, visible & external means.
  • Coverage Type - Employee Only
  • Sum Insured - 3 times of annual CTC with minimum cap of INR 10,00,000
  • Free Cover Limit - 1.5 Crore
• Work-Life Balance ⚖️ - 15 days of Privilege leaves per calendar year, 6 days of Paid Sick leave per calendar year, 6 days of Casual leave per calendar year. Paid 26 weeks of Maternity leaves, 1 week of Paternity leave, a day off on your Birthday, and paid holidays
• Financial Security💰 - Provident Fund & Gratuity
• Wellness 🤸‍ - Employee Assistance Program and comprehensive wellness initiatives
• Growth 🌱 - Access to ongoing learning and development opportunities and career advancement

At Nextiva, we're committed to supporting our employees' health, well-being, and professional growth. Join us and build a rewarding career! 

#LI-SR1 #LI-Onsite