Senior Manager, Threat Hunting & Intelligence (US Remote Available)

Company: Splunk
Location: Plano
Posted on: June 25, 2022

Job Description:

Join us as we pursue our disruptive new vision to make machine data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, were committed to our work, customers, having fun and most importantly to each others success. Learn more about Splunk careers and how you can become a part of our journey!RoleThe Senior Manager, Threat Hunting & Intelligence (THI) reports to the Director of Threat Detection. The role is based in McLean, VA, San Francisco Bay Area or Remote. In this role, you will be responsible for the day-to-day operations of the THI team. You will have a deep understanding of Information Security principles coupled with solid grasp of what it takes to run a key team within Splunk and a strong desire to learn and grow. We are a passionate team who has fun, enjoys a good laugh but above all else thinks security first!ResponsibilitiesLead day-to-day functions of the Splunk THI team to monitor, track and analyze Threat Actor Groups and emerging threats in service of the defense of the enterprise.Understand the sophisticated threats that Splunk may be exposed to and lead dissemination of that information in a pragmatic wayMaintain team resources to support business & operational needsEstablish and sustain service level goals with key business partners while seeking opportunities to improve upon themRaise issues to leadership in a timely manner with appropriate information regarding risk, action times, and root cause analysisDevelops program metrics and reporting frameworks, compiles and analyzes data for accurately timely reporting of activityDrive prioritization and focus across several cross-functional service areas to provide useful intelligenceEstablish and maintain relationships with industry partners to continuously improve Splunk's defensive postureDefine strengths you'll need of intelligence and hunt practitioners to ensure continuous development of internal resourcesBuild technical briefs and speak to customers and partners about Splunks use of Splunk security products, and how we improve our partner ecosystem.RequirementsAt least 3 years experience managing a threat intelligence, incident response, or similar teamAbility to build positive relationships internally and externally, in-person and virtuallyDetailed understanding of the MITRE ATT&CK Framework and/or the Cyber Kill ChainDemonstrated ability to identify, coordinate and respond to security incidents using commercial and/or open source technologies.Experience with Incident Response methodology in investigations, and the groups behind targeted attacks and tactics, techniques, and procedures (TTPs)Advanced understanding of attacks impacting a cloud native environmentAbility to summarize events/incidents effectively to different constituencies such as legal counsel, executive management and technical staff, both in written and verbal forms.Eligible to work in the United States without company sponsorshipWe value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying.For job positions in San Francisco, CA, and other locations where required, we will consider for employment qualified applicants with arrest and conviction records.(Colorado only*) Minimum base salary of $135,000.00. You may also be eligible for incentive pay + equity + benefits.*Note: Disclosure per sb19-085 (8-5-201 et seq). Thank you for your interest in Splunk!

Keywords: Splunk, Plano , Senior Manager, Threat Hunting & Intelligence (US Remote Available), Executive , Plano, Texas