Sr Security Engineer (Detection Engineering,Splunk)

Description

About the role
n

Gartner information security teams are a group of passionate information security professionals dedicated to Protecting, Detecting, and Responding to threats. Our team consists of lifelong learners who consistently research ways to better defend against and stay ahead of emerging threats. We are a collaborative group where good ideas are welcomed from both experienced and new team members.
n

We are seeking a well-rounded and motivated Security Engineer to join our Security Operations team. The ideal candidate will have experience developing and maintaining security detections, building automation workflows, and possess incident response or security analyst knowledge.
n

What you will don

• Develop innovative and cutting-edge detection content aligned with ATT&CK, Cyber Kill Chain, and various other cyber security frameworksn
• Maintain, tune and update an extensive library of detections.n
• Build and implement tools to automate security monitoring and tasks.n
• Create and support response playbooks and reporting metrics.n
• Collaborate with key stakeholders to improve detections and automationn
• Contribute ideas and solutions to a fast-paced, growing, and evolving team centered around operational excellencen
• Contribute to the maturity of the Security Operations team.n
Assist with investigations of security events and incidents
n
• n

What you will need
n

Ideal candidates have 2-4 years of security experience and the ability to engineer detection content with a security mindset. Strong problem-solving skills and the capacity to consistently evaluate and reprioritize based on the current operational picture are essential.
n

Must haven

• 2-4 years of information security / cybersecurity experiencen
• 1.5+ years using Splunk for detection content creationn
• 9+ months of scripting or software development experience, preferably with automation (Python, JavaScript, PowerShell, Bash)n
• Ability to integrate systems using REST APIsn
Knowledge of cloud security across multiple popular cloud providers
n
• n

nNice to Haven

• Ability to automate tasks and code solutions to repetitive problemsn
• Experience with SOAR or big data platformsn
• Experience using Azure Sentineln
Experience setting up CI/CD pipelines.
n
• n

nWho you aren

• Excellent communication and prioritization skills.n
• Ability to work independently or collaboratively in a fast-paced, time-sensitive operations environmentn
• Innovation mindset Takes opportunities to make existing processes more efficient and thinks automation first'n
Strong desire to improve upon and broaden their skills in information security
n
• n

Don't meet every single requirement We encourage you to apply anyway. You might just be the right candidate for this, or other roles.n
n
n#LI-NS4n

Who are wen

At Gartner, Inc. (NYSE:IT), we guide the leaders who shape the world.n

Our mission relies on expert analysis and bold ideas to deliver actionable, objective insight, helping enterprise leaders and their teams succeed with their mission-critical priorities.n

Since our founding in 1979, we've grown to more than 20,000 associates globally who support 15,000 client enterprises in 90 countries and territories. We do important, interesting and substantive work that matters. That's why we hire associates with the intellectual curiosity, energy and drive to want to make a difference. The bar is unapologetically high. So is the impact you can have here.n

What makes Gartner a great place to workn

Our sustained success creates limitless opportunities for you to grow professionally and flourish personally. We have a vast, virtually untapped market potential ahead of us, providing you with an exciting trajectory long into the future. How far you go is driven by your passion and performance.n

We hire remarkable people who collaborate and win as a team. Together, our singular, unifying goal is to deliver results for our clients.n

Our teams are inclusive and composed of individuals from different geographies, cultures, religions, ethnicities, races, genders, sexual orientations, abilities and generations.n

We invest in great leaders who bring out the best in you and the company, enabling us to multiply our impact and results. This is why, year after year, we are recognized worldwide as a great place to work .n

What do we offern

Gartner offers world-class benefits, highly competitive compensation and disproportionate rewards for top performers.n

In our hybrid work environment, we provide the flexibility and support for you to thrive working virtually when it's productive to do so and getting together with colleagues in a vibrant community that is purposeful, engaging and inspiring.n

Ready to grow your career with Gartner Join us.
n

nThe policy of Gartner is to provide equal employment opportunities to all applicants and employees without regard to race, color, creed, religion, sex, sexual orientation, gender identity, marital status, citizenship status, age, national origin, ancestry, disability, veteran status, or any other legally protected status and to affirmatively seek to advance the principles of equal employment opportunity.n

Gartner is committed to being an Equal Opportunity Employer and offers opportunities to all job seekers, including job seekers with disabilities. If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to use or access the Company's career webpage as a result of your disability. You may request reasonable accommodations by calling Human Resources at +1 (203) 964-0096 or by sending an email to [Confidential Information] .n

By submitting your information and application, you confirm that you have read and agree to the country or regional recruitment notice linked below applicable to your place of residence.n

Gartner Applicant Privacy Link: https://jobs.gartner.com/applicant-privacy-policy