Cybersecurity Logging Engineer - Splunk

Zions Bancorporation's Enterprise Technology and Operations (ETO) team is transforming what it means to work for a financial institution.

With a commitment to technology and innovation, we have been providing our community, clients and colleagues the best experience possible for over 150 years.

Help us transform our workforce of the future, today.

The Enterprise Information Security team is responsible for enabling secure innovation and business growth for over 10,000 employees across 44 states.

EIS is rapidly growing, and focused on creating a relevant program that will enable our organization's long-term success.

Our department's work has support from executive and board members as we drive enterprise-wide initiatives. Additionally, we're a team that has fun and easily laughs together.

We're focused on creating business value and are seeking like-minded professionals to join our team!

We are currently seeking a Cybersecurity Logging Engineer - Splunk to join CSOC as part of the overall EIS team. This role is a critical part of our overall success as a Cybersecurity Operations Center (CSOC), which monitors and protects 10,000 employees and 80+ Billion in customer assets.

It is a fantastic opportunity to help drive our Splunk SIEM implementation to the next level. Your work will directly impact the detections the CSOC relies on to protect the bank.

You will be surrounded by stellar colleagues who are passionate about their work and will push you to grow. There will be opportunities to learn other functions within the CSOC and grow your skillset.

The Cybersecurity Logging Engineer - Splunk will :

Work directly alongside the security team to facilitate increased observability through log management

Support security logging functions including :

Act as knowledge manager for Enterprise Security search head

Log pipeline management

Ingestion & extraction of log data

Applying event logs to data models

Ensure data sources are compliant with the Common Information Model (CIM)

Administer Splunk Cloud Enterprise Security

Document Data Flows, Procedures, & Architecture

Partner with infrastructure teams to manage existing log sources & ingest new sources

Have ServiceNow queue responsibilities

Other duties as assigned

Technical Experience and Qualifications :

Must have 2 or more years of hands-on technical experience with a commercial SIEM product such as Splunk Enterprise Security, IBM QRadar, LogRhythm, ArcSight, NetWitness, or others

Knowledge of Linux and Windows operating systems, with an understanding of filesystem structure and process analysis

Bachelor's degree in Computer Science, Information Technology, Information Systems, or a related technical field is a plus, and 6+ years of relevant work experience.

A combination of education and experience may meet qualifications

Experience that is a plus :

Technical certifications such as Security+, Splunk Enterprise Security Administrator / Analyst, Splunk Core Certified Power User, Splunk Core Certified Advanced Power User, Splunk Cloud Certified Admin, Splunk Enterprise Certified Architect

Technical familiarity with networking concepts and tools, including network traffic analysis, proxies, functionality of network switches, load balancers, routers, and firewalls

Technical experience in one or more technical cybersecurity domains, or equivalent education

Location :

This position has a hybrid work from home schedule with a minimum of three days per week in the office at the new Zions Technology Center in Midvale, UT.

The Zions Technology Center is a 400,000-square-foot technology campus in Midvale, Utah. Located on the former Sharon Steel Mill superfund site, the sustainably built campus is the company's primary technology and operations center.

This modern and environmentally friendly technology center enables Zions to compete for the best technology talent in the state while providing team members with an exceptional work environment with features such as :

• Electric vehicle charging stations and close proximity to Historic Gardner Village UTA TRAX station.
• At least 75% of the building is powered by on-site renewable solar energy.
• Access to outdoor recreation, parks, trails, shareable bikes and locker rooms.
• Large modern cafe with a healthy and diverse menu.
• Healthy indoor environment with ample natural light and fresh air.
• LEED-certified sustainable building that features include the use of low VOC-emitting construction materials.

Benefits :

• Medical, Dental and Vision Insurance - START DAY ONE!
• Life and Disability Insurance, Paid Parental Leave and Adoption Assistance
• Health Savings (HSA), Flexible Spending (FSA) and dependent care accounts
• Paid Training, Paid Time Off (PTO) and 11 Paid Federal Holidays
• 401(k) plan with company match, Profit Sharing, competitive compensation in line with work experience
• Mental health benefits including coaching and therapy sessions
• Tuition Reimbursement for qualifying employees
• Employee Ambassador preferred banking products

Illusion