👉 Subscribe to find your next opportunity by joining +5,000 remote workers and get 140 offers per week 🌎

Production Support (Splunk) Engineer - 3rd Shift
Publication date: Dec 20th
Job type: Full Time
Category: Software Dev
View all deepwatch jobs


Who We Are

deepwatch is redefining cybersecurity and is one of the fastest growing companies in the U.S. (Top 50 based on last year’s Inc5000). deepwatch serves an impressive list of Fortune 50 and Global 2000 companies as well as numerous mid-sized enterprises. We’ve established strategic partnerships with leading security vendors and serve as a trusted advisor to our customers. Our Core Values drive all aspects of the business and have been paramount to the company’s success and foster our dynamic, entrepreneurial workplace. At deepwatch, your colleagues are some of the most technically astute minds in cybersecurity, who are passionate, knowledgeable, and willing to provide mentorship and guidance at every opportunity.

deepwatch’s next generation Managed Security Services (MSSP) solution is redefining the industry. If you have the passion, work ethic, winning attitude and competitive mindset to be at the forefront of the best entrepreneurial MSSP in the U.S., we want you on our team.

deepwatch Offers
  • Knowledgeable and skilled colleagues seeking collaboration
  • We pay 100% of our employees’ health, dental, life & disability insurance premiums and a generous portion for dependents
  • We provide access to competitive 401k retirement plans upon eligibility
  • Paid Time Off
  • 10 Company Holidays
  • Most positions allow for some amount of telework and flextime, enabling our employees to manage work & life
  • All employees enjoy a generous mobile phone and home internet allowance
  • Apple products
  • Robust referral bonus program
  • Career paths
  • Training & Development opportunities

Production Support (Splunk) Engineer - 3rd Shift (remote)

This is a shift position, with hours 12 AM - 10 AM Monday - Thursday

Production Support (Splunk) Engineers at deepwatch play a pivotal role in the technical health and well being of our customer environments. Our goal is to create a continuous learning process to rectify and build automated solutions to maintain a world-class SIEM hosting operation, and Production Support (Splunk) Engineers will contribute to that as a part of a team responsible for production support Monday - Thursday.

This role reports to the Principal Engineer, Data Analytics & Automation, who is responsible for setting the standards for design, development, implementation, configuration, operation, management, testing, tuning, and optimization of all systems and resources within deepwatch’s offerings. Candidates must display aptitude and ability to manage a multitude of virtual resources in a fast paced environment.

This position is virtual / remote working from a home office unless at a customer site and be able to travel up to 10% nationally.

  • Ensuring log sources are reporting accurately to customer SIEM environments;
  • Reviewing environment health alert, reports, and dashboards to ensure timely response to any production support issue;
  • Troubleshooting log health issues and performing root cause analysis on the situation; and
  • Resolving issues directly or escalating them to engineers directly responsible for those environments, as necessary.
  • Identify and remediate production server issues as it relates to the operating system and Splunk processes
  • Troubleshoot log ingestion issues
  • Communicate issues to customers in an efficient and timely manner
  • Meet Service Level Agreement requirements of the role
  • Keep well-documented notes within tickets that are worked about the work performed
  • Interface with internal teams to resolve issues, provide additional information, and answer questions
  • Keep up-to-date with information security news, techniques, and trends
  • Manage multiple priorities simultaneously while managing expectations and project milestones
  • Continually advance knowledge of the deepwatch environment and progress knowledge and skills towards Squad (Splunk) Engineer level
  • Develop proficiency with Splunk as an engineer
  • Develop proficiency with Amazon Web Services as an engineer
  • Develop proficiency with ServiceNow as an engineer
  • Develop proficiency with third-party threat intelligence tools as required
  • The ideal candidate should be able to multitask and give equal attention to a variety of functions while under pressure
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.


Required Experience
  • Understanding of Linux and Windows server administration
  • Proficient in Splunk's query language
  • General understanding of Splunk platform management
  • Ticket queue management skills
  • Must be an independent self-starter
  • Good communication skills - written and oral
  • Ability to pass a pre-employment background and drug screen in accordance with applicable laws

Preferred Experience
  • Experience in Information Security
  • Experience with Splunk (or any other SIEM)
  • Experience with Linux Operating Systems (CentOS, RedHat, Ubuntu)
  • Experience with Amazon Web Services (AWS)
  • Experience with Microsoft Azure
  • Experience with DevOps software (Ansible, Chef, Puppet, etc)
  • Experience with Incident Management
  • Experience writing and communicating with customers
  • Degree in Information Security or Information Technology
  • Previous experience on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC)
Equal Opportunity Employer

deepwatch is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, marital status, sexual orientation, gender identity, genetic information, protected veteran status, or any other characteristic protected by law. In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.

Please mention that you come from GetRemotify when applying for this job.