Splunk Remote Engineer - Senior (XSIAM PANW)

Company DescriptionStopAHack.com® Corporation is a cybersecurity company founded by an honorable military veteran. We serve a diverse client base ranging from startups to Fortune 500 companies, providing cutting-edge digital safety offerings that combine military-grade precision with cybersecurity innovation.StopAHack.com® is honored to be Certified by Great Place to Work®. Great Place To Work® Certification™ is the most definitive “employer-of-choice” recognition that companies aspire to achieve. It is the only recognition based entirely on what employees report about their workplace experience – specifically, how consistently they experience a high-trust workplace. Great Place to Work Certification is recognized worldwide by employees and employers alike and is the global benchmark for identifying and recognizing outstanding employee experience. Every year, more than 10,000 companies across 60 countries apply to get Great Place To Work-Certified.StopAHack.com® Corporation employs professionals on a full time W-2 hourly basis as subject matter experts (SMEs). We assign the vetted SME to our esteemed partner, Palo Alto Networks Inc. (Palo), where the SME is responsible for providing cybersecurity solutions to Palo's clients. The identity of Palo's client remains confidential until the vetting process for the subject matter expert is successfully completed.Step 1: StopAHack hires you as a W-2 employee (not a contract position).Step 2: StopAHack assigns you to Palo Alto Networks Inc. as a Professional Services Contractor Consultant after passing all interviews and background checks.Step 3: Palo Alto Networks places you in their client portfolio to provide specialized professional services after successfully completing their onboarding training.Below Is The Process Flow:StopAHack (W-2 Full-time Employer NOT a contract position)|vAssigned to Palo Alto Networks Inc. (Professional Services Contractor Consultant)|vPlaced in Palo Alto's Client Portfolio for Daily TaskRole DescriptionThe Splunk SIEM SOC Engineer will be responsible for the day-to-day management and maintenance of the end client's SIEM environments and data ingestion into Cortex XSIAM. This includes deployment builds, developing use cases, writing correlation rules, investigating alerts using REGEX, and responding to identified risks. A qualified candidate will also be responsible for working with customers to determine their SIEM needs and ensuring that the SIEM platform is consistently aligned with their cybersecurity needs. Training will be provided for XSIAM.Qualifications• 10 years of experience with Splunk is required, including experience with deploying and maintaining Splunk rules and dashboards.• Strong knowledge of REGEX and cybersecurity principles, including experience working in a SOC environment• Experience in threat hunting and incident response.• Strong analytical and problem-solving skills.• Excellent communication and collaboration abilities.• Ability to work independently and remotely.• Bachelor's degree in computer science, Cybersecurity, or related field.• Industry certifications such as CISSP, GIAC, or Splunk certifications are preferred.