This job posting isn't available in all website languages

(While navigating through the site, please be sure to disable your pop-up blocker.)

Information Technology
138686 Requisition #
Sign Up for Job Alerts

The Information Security department oversees monitoring and improvement of security of information resources including identity management, anti-virus, intrusion detection and remediation, data encryption, risk management and prevention, change management and disaster recovery.

The Splunk Administrator / Splunk Engineer (Sr Information Security Analyst) provides technical support in the evaluation, implementation and maintenance of the institution's information security technologies, standards and processes.

***Ideal candidates will have strong Splunk experience***

Customer Support  
Provide backup support to team members, provide timely and quality service to MDACC departments, address work queues in a timely manner, and complete all projects and tasks in a timely manner. 
Follow the PSCS methodologies of projects (including maintaining documented project plans and milestones). 
Consistent ownership of problem resolution and interdepartmental troubleshooting, no lapses in on call support; recognition from peers on the level of support in the form of a letter of appreciation or email stating the like. 
Creating tickets for requests, addressing tickets in a reasonable time frame and ensuring customers are communicated to who inquire through the Infosec email box. (if applicable) Project plans and milestones are monitored and regularly communicated to stakeholders.  Proactive assessment of systems ensuring maximum uptime, no lapses in on call support; recognition from peers on the level of support in the form of multiple letters of appreciation or emails stating the like. 
Recognition from departments outside the IS Division rewarding the level of support provided. All tickets created and addressed in a timely manner, and proactively communicating and solving problems with customers who inquire through the Infosec email box. (if applicable)

System Support  Splunk 
Create a repository for custom queries and alerts including security alerts.
Work with other members on the team to ensure security tools are logging to Splunk.   
Put monitoring in place to ensure uptime of all components of the system.            
Configure and set policies based on network location.             
Work with vendor to ensure basic configuration is set.             
Create and maintain documented processes and procedures.            
Provide cross training for team members.             
Ensure system is updated at least quarterly.
Obtain the necessary knowledge to be the backup admin. for Splunk and improve the architecture Continue to ensure infrastructure is patched according to existing patch processes, facilitate various requests from customers, keep up to date on services available from Splunk, and communicate necessary information to the team relevant to the infrastructure.

Splunk Data Protect Program (DPP)
 Support Data Protect Program working with other departments and requirements            
 Build and enhance DPP into the DLP program utilizing the Splunk solution
 Understand new technologies and build into the DPP program with Splunk
Follow processes established for DPP alerts and fine tune as necessary 
Complete documentation for processes and procedures   

Personal Development   
Continuing Education/Training
Attend at least 2 classes(1 track) through the education center. Classes can be in any competencies listed through the Education Center.
Attend classes/training to maintain certification criteria

Planning and Development   
Assist in the planning and development of key technologies within Information Security.

Technical Resource   
Assist as technical resource to other Sr Information Security Analysts and other IT personnel. Assist with the development and maintenance of documentation for all assigned projects
Other duties as assigned

Education Required:
Bachelor's degree in Computer Information Systems, Business Information Systems, Computer Science or related field. 

Experience Required
Five years of information security experience, to include experience in multiple security domains. May substitute required education degree with additional years of equivalent experience on a one to one basis.

Experience Preferred:
Strong Splunk experience with good understanding in the security field

Certification Required:

Preferred Certification:
SANS or other applicable industry or systems certification. (Example CISSP or CISA)

It is the policy of The University of Texas MD Anderson Cancer Center to provide equal employment opportunity without regard to race, color, religion, age, national origin, sex, gender, sexual orientation, gender identity/expression, disability, protected veteran status, genetic information, or any other basis protected by institutional policy or by federal, state or local laws unless such distinction is required by law. http://www.mdanderson.org/about-us/legal-and-policy/legal-statements/eeo-affirmative-action.html

My Submissions

Track your opportunities.

My Submissions

Similar Listings

Lymphoma-Myeloma - Research 600664

United States, Texas, Houston, Houston (TX Med Ctr)

📁 Information Technology

Requisition #: 138410

United States, Texas, Houston, Houston (TX Med Ctr)

📁 Information Technology

Requisition #: 139067

United States, Texas, Houston, Houston (TX Med Ctr)

📁 Information Technology

Requisition #: 138242