IT Security Engineer I - SIEM (Splunk) & SentinelOne EDR
ExternalPrepare for this interview
EliteAI-generated questions, company research, and talking points tailored to this role
Requirements
- Industry certifications such as CISSP, CISM, CEH, Security+, or equivalent.
- Hands-on administration experience with Splunk Enterprise Security (preferred).
- Hands-on administration experience with SentinelOne EDR (preferred).
- Experience with Proofpoint or other Secure Email Gateway solutions.
- Experience with Disaster Recovery (DR) and Business Continuity Planning (BCP).
- Experience working in Security Operations (SOC) environments.
- Experience supporting regulatory compliance initiatives.
- Demonstrated success delivering enterprise IT security projects.
- Ability to exercise sound judgment while handling confidential information.
- OUR CULTURAL BELIEFS:
- Patient Minded I act with the patient's best interest in mind.
- Client Delight I own every client experience and its impact on results.
- Take Action I am empowered and empower others to act now.
- Grow Talent I own my development and invest in the development of others.
- Win Together I passionately connect with anyone, anywhere, anytime to achieve results.
- Communication Matters I speak up to create transparent, thoughtful and timely dialogue.
- Embrace Diversity I create an
Benefits
Additional Information
The IT Security Engineer is responsible for the administration, operation, and continuous improvement of EVERSANA's enterprise information security technologies while ensuring adherence to information security policies, standards, and procedures. This role is a key member of the Security Operations team and is responsible for administering critical security platforms, monitoring the security posture of the organization, identifying vulnerabilities, and implementing security controls to reduce organizational risk. The ideal candidate will have strong hands-on experience administering Enterprise SIEM and/or Endpoint Detection & Response (EDR) platforms, with a preference for Splunk Enterprise Security and SentinelOne. This is an engineering-focused role and not a Security Analyst position. ESSENTIAL DUTIES AND RESPONSIBILITIES Our employees are tasked with delivering excellent business results through the efforts of their teams. These results are achieved by: Administer, configure, maintain, and optimize enterprise security platforms, including SIEM and Endpoint Detection & Response (EDR) solutions. Recommend, implement, and manage appropriate IT security technologies to protect the organization from cyber threats. Perform day-to-day administration, health checks, troubleshooting, upgrades, and maintenance of security tools to ensure optimal performance. Configure and maintain SIEM correlation rules, dashboards, alerts, log sources, and integrations with enterprise systems. Administer Endpoint Detection & Response (EDR) policies, agent deployment, threat detection, and platform configuration. Conduct regular vulnerability assessments, identify security risks, and coordinate remediation activities. Monitor emerging vulnerabilities and security threats that may impact EVERSANA and recommend appropriate mitigation strategies. Collaborate with Security Operations, Infrastructure, Compliance, and other IT teams to improve the organization's security posture. Participate in disaster recovery and business continuity testing activities. Work closely with the Regulatory Compliance team to implement security solutions that meet business and compliance requirements while minimizing risk. Develop, maintain, and enforce security Standard Operating Procedures (SOPs) and operational documentation. Demonstrate a commitment to diversity, equity, and inclusion through continuous development, modeling inclusive behaviors, and proactively managing bias. Perform other duties as assigned. MINIMUM KNOWLEDGE, SKILLS AND ABILITIES The requirements listed below are representative of the experience, education, knowledge, skill and/or abilities required. Bachelor's degree in Engineering, Computer Science, Information Technology, or a related field. 4+ years of hands-on experience in Information Security. 6+ years of overall IT experience. Strong hands-on administration experience with Enterprise SIEM platforms (Splunk Enterprise Security preferred). Strong hands-on administration experience with Enterprise Endpoint Detection & Response (EDR) platforms (SentinelOne preferred). Candidates with administration experience in either Splunk Enterprise Security or SentinelOne will also be considered. Experience configuring, administering, troubleshooting, upgrading, and maintaining enterprise security platforms. Experience with security technologies including: SIEM Endpoint Security / EDR IDS/IPS Vulnerability Management Experience managing security alerts, detection rules, dashboards, log sources, and platform integrations. Experience performing vulnerability assessments and coordinating remediation activities. Excellent analytical, troubleshooting, and problem-solving skills. Strong verbal and written communication skills. Ability to manage multiple priorities while working in a fast-paced environment.
Your Match
How well this role fits your profile.
Company Intel
What employees say
Worked at Eversana1? Share your experience