Splunk (Phantom) SOAR Engineer

SOC · Beachwood, Ohio
Department SOC
Employment Type Full-Time
Minimum Experience Mid-level

Job Opening: Splunk (Phantom) SOAR Engineer


About Hurricane Labs

Hurricane Labs is a dynamic Managed Services Provider that unlocks the potential of Splunk and security for diverse enterprises across the United States. With a dedicated, Splunk-focused team and an emphasis on humanity and collaboration, we provide the skills, resources, and results to help make our customers’ lives easier. 


Our collaborative geek culture empowers the success of our team. We encourage an open environment where diverse, passionate people feel comfortable sharing ideas, learning through experience, and succeeding together. 


For more information, visit www.hurricanelabs.com and follow us on Twitter @hurricanelabs.


Splunk SOAR Engineer Responsibilities & Qualifications

We are currently seeking a Splunk Phantom Engineer to join our team. The chosen candidate for this position must have a love of diverse technologies and IT-related infrastructure. 


Desired Technical Skills

  • Assist in developing and maintaining Splunk Phantom
  • Ability to work with, create, test, and maintain SOAR automation and workflows
  • Experience creating, testing, and maintaining automation scripts across the SOAR platform
  • Experience implementing and maintaining relevant code in a consistent, efficient, and reusable manner–including Python and PowerShell
  • Debug and resolve technical issues across the Splunk Phantom platform
  • Experience and knowledge of integrating SOAR with other security tools
  • Support SOC process development–assist in improving playbooks, workflows, and other process documentation 
  • Experience with IDS tuning, SIEM, and correlation search tuning is a plus 
  • Linux skills are a plus
  • Splunk Phantom Certified Admin is a plus


Necessary Soft Skills

  • Ability to read and understand written English
  • Ability to clearly communicate on the phone and through e-mail/ticket updates
  • Ability to manage multiple tasks simultaneously and prioritize tasks appropriately
  • Good customer service skills. Note: This job requires you to speak to clients throughout the day, please remember when applying


Technologies

Splunk Enterprise Security is our preferred SIEM tool and is used for event investigation. The other technologies we use include Splunk, Suricata, Git, and logs/events from various sources. 


Benefits & Perks

We believe in taking care of our team. Hurricane Labs provides our employees with a full benefits package, including 100% company-paid medical, dental, and vision insurance, as well as long/short-term disability coverage. 


Being part of the Hurricane Labs team also means enjoying a bunch of perks like:

  • Open-source project support
  • On-the-job training/learning opportunities
  • No micromanagement
  • Flexible work schedule 
  • Paid holidays
  • PTO
  • 401K

Feel like you would be a good fit? Tell us why!

Please submit your cover letter and resume. We also encourage our applicants to include their blog, GitHub, and/or related projects to provide an example of your applicable skills–nice, but not required.


We appreciate you taking the time to apply with Hurricane Labs!

Thank You

Your application was submitted successfully.

  • Location
    Beachwood, Ohio
  • Department
    SOC
  • Employment Type
    Full-Time
  • Minimum Experience
    Mid-level