Kaiser Permanente
Cyber Risk Defense Consultant - Splunk Administrator
Kaiser Permanente, Greenwood Village, Colorado, United States
Join to apply for the
Cyber Risk Defense Consultant - Splunk Administrator
role at
Kaiser Permanente Join to apply for the
Cyber Risk Defense Consultant - Splunk Administrator
role at
Kaiser Permanente Get AI-powered advice on this job and more exclusive features. Job Summary
The Splunk Administrator is responsible for maintaining and administering servers and infrastructure supporting Kaiser Permanente's Security Information & Event Management platform as well as perform Splunk application administration activities including administration of a Splunk Cloud environment. The Splunk Administrator will augment an existing team and will perform system administration tasks on a very large and complex Red Hat environment and enterprise clustered Splunk environment. Job Summary
The Splunk Administrator is responsible for maintaining and administering servers and infrastructure supporting Kaiser Permanente's Security Information & Event Management platform as well as perform Splunk application administration activities including administration of a Splunk Cloud environment. The Splunk Administrator will augment an existing team and will perform system administration tasks on a very large and complex Red Hat environment and enterprise clustered Splunk environment.
The Splunk Administrator will be responsible and accountable for the following:
Performing Splunk data onboarding, event normalization, user provisioning, Splunk TA customization/development, and general troubleshooting of Splunk Enterprise, Splunk Universal Forwarders, and other Splunk components Performing system administration on more than 300 Red Hat servers Testing and deploying operating system, firmware, and application patches Development of system automation using Ansible scripting and Python development
This senior level employee is primarily responsible for overseeing the maintenance and protection of integrity and reliability of the security of data, systems and networks.
Essential Responsibilities
Conducts or oversees business-specific projects by applying deep expertise in subject area; promoting adherence to all procedures and policies; developing work plans to meet business priorities and deadlines; determining and carrying out processes and methodologies; coordinating and delegating resources to accomplish organizational goals; partnering internally and externally to make effective business decisions; solving complex problems; escalating issues or risks, as appropriate; monitoring progress and results; recognizing and capitalizing on improvement opportunities; evaluating recommendations made; and influencing the completion of project tasks by others. Practices self-leadership and promotes learning in others by building relationships with cross-functional stakeholders; communicating information and providing advice to drive projects forward; influencing team members within assigned unit; listening and responding to, seeking, and addressing performance feedback; adapting to competing demands and new responsibilities; providing feedback to others, including upward feedback to leadership and mentoring junior team members; creating and executing plans to capitalize on strengths and improve opportunity areas; and adapting to and learning from change, difficulties, and feedback. Leads team in the proactive monitoring and/or response to known or emerging threats against the KP network. Effectively communicates investigative findings to non-technical audiences. Plans and facilitates regular operations meeting with Cyber Risk Defense Center (CRDC) teams. Supports closed loop processes on security efforts by providing feedback to the TDA leads and/or leadership. Participates in information fusion procedures across operations and engineering, including activities such as Use Case planning/development, Use Case quality assurance validation, and response procedure documentation. Serves as a liaison between stage teams and upper management by identifying issues, improvement areas, or security/architectural gaps and suggesting appropriate improvements. Drives the development of the CRDC intellectual capital by leading process or procedure improvements, consulting on brown bag training sessions, and leading the development of new training documents. Partners with the CRDC Policy Engineers and Remediation teams to contain identified issues and determine the best approach for improving security posture. Facilitates follow-up remediation design and review efforts. Leads the investigation and triage of security events across multiple domains. Leads complex data analyses in support of security event management processes, including root cause analysis. Coordinates the response and resolution of high impact or critical cyber security incidents. Leads the deployment of threat detection capabilities and/or incident response plans which may include after-hours support and coordination among responsible teams. Drives the execution of incident detection and/or handling processes which may include containment, protection, and remediation activities.
Minimum Qualifications
Minimum two (2) years in an informal leadership role working with project or technical teams. Bachelors degree in Business Administration, Computer Science, Social Science, Mathematics, or related field and Minimum eight (8) years experience in IT or a related field, including Minimum two (2) years in information security or network engineering. Additional equivalent work experience may be substituted for the degree requirement.
Seniority level
Seniority level Mid-Senior level Employment type
Employment type Full-time Job function
Job function Information Technology Industries Hospitals and Health Care Referrals increase your chances of interviewing at Kaiser Permanente by 2x Get notified about new Cyber Security Consultant jobs in
Greenwood Village, CO . Security Consultant IV, Behavioral Threat Management
Englewood, CO $145,000.00-$190,000.00 2 weeks ago Security Consultant, AWSI Professional Services
Denver, CO $118,200.00-$204,300.00 23 hours ago Denver, CO $118,200.00-$204,300.00 13 hours ago Security Consultant, AWSI Professional Services
Denver, CO $118,200.00-$204,300.00 13 hours ago Englewood, CO $124,355.00-$146,300.00 1 week ago Business Information Security Officer (BISO) - Global Banking and Markets Technology
Denver, CO $99,200.00-$145,100.00 2 weeks ago BCG Platinion | Senior Consultant, Cybersecurity - Data Privacy
Cyber Oracle Cloud Security - Consultant
Denver, CO $80,370.00-$155,100.00 4 days ago Cyber Identity - Data Privacy Senior Consultant
Senior Cyber Engineer-Information System Security Officer (ISSO)-P3 Onsite
Aurora, CO $82,000.00-$164,000.00 4 days ago Delivery Consultant - Cloud Security, NAMER
Delivery Consultant - Cloud Security, NAMER
Denver, CO $118,200.00-$204,300.00 2 weeks ago Senior IT Project Manager, Cybersecurity
Delivery Consultant - Cloud Security, NAMER
Cyber Identity - Entra ID Senior Consultant
Delivery Consultant - Cloud Security, NAMER
Delivery Consultant - Cloud Security, NAMER
Cyber Palo Alto Network Security Senior Consultant
Denver, CO $118,700.00-$218,600.00 2 weeks ago Sr. Technology Risk Assessor Consultant – Med Devices (BHJOB22048_756)
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Cyber Risk Defense Consultant - Splunk Administrator
role at
Kaiser Permanente Join to apply for the
Cyber Risk Defense Consultant - Splunk Administrator
role at
Kaiser Permanente Get AI-powered advice on this job and more exclusive features. Job Summary
The Splunk Administrator is responsible for maintaining and administering servers and infrastructure supporting Kaiser Permanente's Security Information & Event Management platform as well as perform Splunk application administration activities including administration of a Splunk Cloud environment. The Splunk Administrator will augment an existing team and will perform system administration tasks on a very large and complex Red Hat environment and enterprise clustered Splunk environment. Job Summary
The Splunk Administrator is responsible for maintaining and administering servers and infrastructure supporting Kaiser Permanente's Security Information & Event Management platform as well as perform Splunk application administration activities including administration of a Splunk Cloud environment. The Splunk Administrator will augment an existing team and will perform system administration tasks on a very large and complex Red Hat environment and enterprise clustered Splunk environment.
The Splunk Administrator will be responsible and accountable for the following:
Performing Splunk data onboarding, event normalization, user provisioning, Splunk TA customization/development, and general troubleshooting of Splunk Enterprise, Splunk Universal Forwarders, and other Splunk components Performing system administration on more than 300 Red Hat servers Testing and deploying operating system, firmware, and application patches Development of system automation using Ansible scripting and Python development
This senior level employee is primarily responsible for overseeing the maintenance and protection of integrity and reliability of the security of data, systems and networks.
Essential Responsibilities
Conducts or oversees business-specific projects by applying deep expertise in subject area; promoting adherence to all procedures and policies; developing work plans to meet business priorities and deadlines; determining and carrying out processes and methodologies; coordinating and delegating resources to accomplish organizational goals; partnering internally and externally to make effective business decisions; solving complex problems; escalating issues or risks, as appropriate; monitoring progress and results; recognizing and capitalizing on improvement opportunities; evaluating recommendations made; and influencing the completion of project tasks by others. Practices self-leadership and promotes learning in others by building relationships with cross-functional stakeholders; communicating information and providing advice to drive projects forward; influencing team members within assigned unit; listening and responding to, seeking, and addressing performance feedback; adapting to competing demands and new responsibilities; providing feedback to others, including upward feedback to leadership and mentoring junior team members; creating and executing plans to capitalize on strengths and improve opportunity areas; and adapting to and learning from change, difficulties, and feedback. Leads team in the proactive monitoring and/or response to known or emerging threats against the KP network. Effectively communicates investigative findings to non-technical audiences. Plans and facilitates regular operations meeting with Cyber Risk Defense Center (CRDC) teams. Supports closed loop processes on security efforts by providing feedback to the TDA leads and/or leadership. Participates in information fusion procedures across operations and engineering, including activities such as Use Case planning/development, Use Case quality assurance validation, and response procedure documentation. Serves as a liaison between stage teams and upper management by identifying issues, improvement areas, or security/architectural gaps and suggesting appropriate improvements. Drives the development of the CRDC intellectual capital by leading process or procedure improvements, consulting on brown bag training sessions, and leading the development of new training documents. Partners with the CRDC Policy Engineers and Remediation teams to contain identified issues and determine the best approach for improving security posture. Facilitates follow-up remediation design and review efforts. Leads the investigation and triage of security events across multiple domains. Leads complex data analyses in support of security event management processes, including root cause analysis. Coordinates the response and resolution of high impact or critical cyber security incidents. Leads the deployment of threat detection capabilities and/or incident response plans which may include after-hours support and coordination among responsible teams. Drives the execution of incident detection and/or handling processes which may include containment, protection, and remediation activities.
Minimum Qualifications
Minimum two (2) years in an informal leadership role working with project or technical teams. Bachelors degree in Business Administration, Computer Science, Social Science, Mathematics, or related field and Minimum eight (8) years experience in IT or a related field, including Minimum two (2) years in information security or network engineering. Additional equivalent work experience may be substituted for the degree requirement.
Seniority level
Seniority level Mid-Senior level Employment type
Employment type Full-time Job function
Job function Information Technology Industries Hospitals and Health Care Referrals increase your chances of interviewing at Kaiser Permanente by 2x Get notified about new Cyber Security Consultant jobs in
Greenwood Village, CO . Security Consultant IV, Behavioral Threat Management
Englewood, CO $145,000.00-$190,000.00 2 weeks ago Security Consultant, AWSI Professional Services
Denver, CO $118,200.00-$204,300.00 23 hours ago Denver, CO $118,200.00-$204,300.00 13 hours ago Security Consultant, AWSI Professional Services
Denver, CO $118,200.00-$204,300.00 13 hours ago Englewood, CO $124,355.00-$146,300.00 1 week ago Business Information Security Officer (BISO) - Global Banking and Markets Technology
Denver, CO $99,200.00-$145,100.00 2 weeks ago BCG Platinion | Senior Consultant, Cybersecurity - Data Privacy
Cyber Oracle Cloud Security - Consultant
Denver, CO $80,370.00-$155,100.00 4 days ago Cyber Identity - Data Privacy Senior Consultant
Senior Cyber Engineer-Information System Security Officer (ISSO)-P3 Onsite
Aurora, CO $82,000.00-$164,000.00 4 days ago Delivery Consultant - Cloud Security, NAMER
Delivery Consultant - Cloud Security, NAMER
Denver, CO $118,200.00-$204,300.00 2 weeks ago Senior IT Project Manager, Cybersecurity
Delivery Consultant - Cloud Security, NAMER
Cyber Identity - Entra ID Senior Consultant
Delivery Consultant - Cloud Security, NAMER
Delivery Consultant - Cloud Security, NAMER
Cyber Palo Alto Network Security Senior Consultant
Denver, CO $118,700.00-$218,600.00 2 weeks ago Sr. Technology Risk Assessor Consultant – Med Devices (BHJOB22048_756)
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr