Job Description

Looking for a Senior Information Security Engineer to join the VMware InfoSec Automation Team in Palo Alto, CA campus. InfoSec Automation Team builds solutions and strategies for detecting and responding to cyber threats targeting VMware systems, applications, infrastructure, information, and users. The ideal candidate for this role would have 5 years of experience in threat detection, investigation, and incident response, and administration of large scale Splunk Infrastructure.

As part of the InfoSec Automation Team, you will be part of team of Data Scientists, capturing and maintaining all data to support Security Operation Center with alerts, dashboards, and historic data. Youll be leveraging Splunk Enterprise clusters, Splunk Enterprise Security, ELK stacks, Database Activities Monitoring, and Security Orchestration, Automation and Response tools.

This position is responsible for:

* Administration UBA/UEBA solutions; continues tuning and detect known and unknown security threats.
* Maintaining multiple Splunk Clusters and Enterprise Security Server.
* Driving the development and ongoing tuning and optimization of SIEM.
* Keeping up-to-date with latest technologies with Security monitoring tools.
* Providing subject matter expertise on advanced threat analysis against large data sets.
* Research for the next generation of security monitoring and automation response capabilities at VMware.
* Development, implementation, and improvements of internal tools for Security Automation.
* Communicating requirements for security tool alerting capabilities and tuning.
* Participation in evaluating, recommending, implementing, and troubleshooting security tools.
* Documentation of all processes and changes.

Required skills and experience:

* 6 years of hands-on technical experience in information Security, including Cloud Security, Incident Response, and Security Event analysis.
* Experience in Splunk Enterprise & Enterprise Security.
* Strong System Administration skill in Windows and UNIX.
* Strong understanding of threat analysis and incident response practices and methodologies.
* Expert technical knowledge of Internet security, networking protocols, and related technologies.
* Strong analytical skills and ability to identify advanced threats.
* Ability to interact effectively at all levels of an organization and across diverse cultural and linguistic barriers.
* Ability to work effectively as part of a team and independently with minimal supervision.
* Strong written and verbal communication skills
* Ability to prioritize projects and deliverables.

Desired skills/experience/certification:

* Bachelors degree or equivalent experience.
* Certifications such as GCIH, GIAC, CISSP, Splunk Certified Architect.
* Scripting skills such as Python, Perl, Shell, Bash, RegEx, Splunk query language.

This job requisition is not eligible for employment-based immigration sponsored by VMware.

This position has a minimum base salary which starts at $95,000. Bonus, commission, and/or equity may be eligible for this position. Additional benefits for this position can be found at https://benefits.vmware.com/. *Note: Disclosure of Colorado pay and benefits required per sb19-968.

Category : Engineering and Technology
Subcategory: Information Security
Experience: Manager and Professional
Full Time/ Part Time: Full Time
Posted Date: 2021-04-05

VMware Company Overview: At VMware, we believe that software has the power to unlock new opportunities for people and our planet. We look beyond the barriers of compromise to engineer new ways to make technologies work together seamlessly. Our cloud, mobility, and security software form a flexible, consistent digital foundation for securely delivering the apps, services and experiences that are transforming business innovation around the globe. At the core of what we do are our people who deeply value execution, passion, integrity, customers, and community. Shape whats possible today at http://careers.vmware.com.

Equal Employment Opportunity Statement: VMware is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind: VMware is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at VMware are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. VMware will not tolerate discrimination or harassment based on any of these characteristics. VMware encourages applicants of all ages. Vmware will provide reasonable accommodation to employees who have protected disabilities consistent with local law.