Santander Bank, NA Splunk Architect Lead in Miami, Florida

Splunk Architect Lead - 1803779



The Splunk Engineer will design, develop, test and implementation of security logging solutions. The Security data platform is the repository for the collection, storage and correlation event data across the enterprise. It must rapidly identify, prioritize, and respond to various security events, compliance violations, policy breaches, cyber security attacks, and insider threats.

Specific responsibilities will include:

• Perform administration, management, configuration, testing, and integration tasks related to Splunk, SEIM and associated platforms to include content creation, maintenance, and administration tasks

• Research, analyze and understand log sources utilized for the purpose of security monitoring, particularly security and networking devices

• Develop, implement, and execute standard procedures for the administration, content management, change management, version/patch management, and lifecycle management of Security Incident and Event Management (SIEM) platforms

• Provide technical inputs to management during proof-of-concept reviews for new security products

• Provide technical guidance to the Security Operations Center and/or the lines of businesses during investigations or incident response



• 5 years hands on IT security engineering and/or architecture experience with Security Incident and Event Management (SIEM) technologies

• Direct experience architecting, configuring, deploying, and/or customizing Splunk

• Proven ability to support large scale application monitoring and event log management solutions (Splunk, ArcSight, QRadar, LogRythm, ESM…)

• Extensive experience creating alerts, dashboards, and reports

• Strong knowledge of multiple security platform administration and/or engineering

• Experience with and in a Hadoop ecosystem specific to configuration and data management

• Understanding of Unix/Linux and Windows operating systems

• Python, Perl, Bash and/or Shell scripting experience is required

• Splunk Certification(s) are a plus

• Splunk Power User Certification

• Splunk Administrator Certification

• Splunk Architect Certification


• Bachelors Information Technology, Engineering, or related field required

• Masters Information Technology, Engineering, or related field preferred

At Santander, we value and respect differences in our workforce and strive to increase the diversity of our teams. We actively encourage everyone to apply.

Job : IT & Systems Control
Primary Location : Florida-Miami
Schedule : Full-time
Job Posting : Jun 4, 2018, 2:48:26 PM