Sr. Cybersecurity Engineer/Architect - Splunk

Position Overview

Neos requires the services of (01) Security Analyst 2 for our Customer's IT Enterprise Information Security division. The selected candidate will implement, configure, and maintain security tools (e.g., CASB, SIEM, DLP, EDR) while collaborating with system administrators, developers, and project managers to align security configurations with compliance frameworks (e.g., CJIS, NIST 800-53). Additionally, the candidate will support secure transitions during major IT projects including modernization efforts and legacy system decommissioning.

Term of Service: 09/03/2025 to 08/31/2026 (maximum 1970 hours).Work Hours & Location: Monday–Friday from 8:00 AM to 5:00 PM in Austin, TX 78741 with teleworking allowed (management approval required).
Travel: All travel, per diem, parking or living expenses are at the Candidate’s expense unless pre-approved.

Key Responsibilities

• Provide ongoing security engineering support and operational assurance for the ChAMP platform following the retirement of the legacy mainframe.
• Collaborate with cross-functional IT teams to maintain and optimize security controls in the cloud-native architecture, including identity management and data encryption.
• Partner with the Security Architecture Management Team to design, implement, and continuously improve technical safeguards aligned with cybersecurity policies and frameworks.
• Conduct vulnerability assessments, penetration tests, and risk analyses to proactively identify system weaknesses.
• Engineer and maintain configurations for security tools and platforms such as SIEM, EDR, CASB, and DLP, including secure API gateways.
• Develop, update, and enforce security standards, technical documentation, and system hardening guides.
• Participate in security incident response activities, providing tier-2/3 analysis, recommendations, and containment support.
• Review proposed system changes, technology upgrades, and application deployments to ensure compliance with secure design principles.

Required Qualifications

• 3–6 years’ proven experience in information security architecture, enterprise cybersecurity operations, regulatory and cloud security compliance, and formal risk assessments.
• 2–5 years’ strong background in Endpoint Detection & Response (EDR) platforms, including deployment, tuning, and threat investigation.
• 3–5 years’ proficiency in security assessment techniques such as vulnerability scanning, penetration testing, and remediation planning.
• 3–7 years’ in-depth knowledge of cloud security principles with experience securing workloads in AWS and Microsoft Azure environments.
• 5–10 years’ expert-level proficiency in designing, engineering, and optimizing Splunk-based security solutions, including advanced SPL query development, dashboard/report creation, SIEM tuning, and SOC workflow integration.

Preferred Qualifications

• Experience in AWS and Azure cloud security along with IT governance, risk, and compliance advisory services, including control frameworks and data classification protocols.

Benefits & Perks

• Teleworking: Flexibility to work remotely with management approval.
• Work Environment: Opportunity to work for a leading IT security team in Austin, TX.
• Travel Support: Pre-approved travel arrangements as per the State of Texas guidelines.