Cybersecurity SIEM Engineer

Cardinal Health
95d$93,500 - $140,280
Match Resume

About The Position

Cardinal Health, Inc. (NYSE: CAH) is a global, integrated healthcare services and products company connecting patients, providers, payers, pharmacists and manufacturers for integrated care coordination and better patient management. Backed by nearly 100 years of experience, with more than 50,000 employees in nearly 60 countries, Cardinal Health ranks among the top 20 on the Fortune 500. Cardinal Health’s Information Security team aims to be a world-class cybersecurity and risk management organization that enables Cardinal Health to be healthcare’s most trusted partner. We are a remote-first team and are excited to offer full-time remote opportunities. We currently have a full-time career opening for an SIEM Engineer in our Cybersecurity Platform Engineering team. We boast tremendous opportunities to grow and apply technical skills to meet organizational needs, empowering talented team members who mentor and uplift others, led by leaders with a maniacal focus on employee development and well-being, dedicated training programs, and a fun and collaborative atmosphere. This role is responsible for onboarding and normalizing data sources from a variety of platforms, developing custom content including dashboards, apps, and addons for our SIEM platform. The right person for this role will be an individual with proven experience onboarding data and developing content for Splunk with a strong passion for Cybersecurity.

Requirements

  • Experience onboarding data and developing content for Splunk
  • Excellent Splunk query and dashboarding skills
  • Proficient with Linux Operating Systems
  • Experience working with APIs
  • Experience with reading event logs from common IT and Security platforms
  • Ability to collaborate with numerous teams and internal customers

Nice To Haves

  • Familiarity with security frameworks (MITRE ATT&CK, NIST CSF, etc.)
  • Experience with Python
  • Agile development experience
  • General knowledge of networking, servers, cloud technologies, and firewalls
  • Experience in a large enterprise environment (2000+ users) is a plus

Responsibilities

  • Developing content, onboarding data, and integrating systems with our Security Information Event Management (SIEM)
  • Building cloud native infrastructure including Linux servers, containers, and storage buckets
  • Integration of platforms through APIs
  • Continuous optimization, tuning, and monitoring of platforms
  • Working closely with Cyber Threat & Response
  • Executing projects to improve the cybersecurity maturity of the organization
  • Troubleshooting issues affecting internal customers
  • Participation in POC/RFP by testing solutions or building test environments
  • Mentor other members of the team

Benefits

  • Medical, dental and vision coverage
  • Paid time off plan
  • Health savings account (HSA)
  • 401k savings plan
  • Access to wages before pay day with myFlexPay
  • Flexible spending accounts (FSAs)
  • Short- and long-term disability coverage
  • Work-Life resources
  • Paid parental leave
  • Healthy lifestyle programs

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Number of Employees

5,001-10,000 employees

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service