Network​/System Engineer V

Job Description

This role provides front-line support to end-users, managing incident and problem governance for multiple applications, leading triage of business‑impacting incidents, ensuring compliance with incident management policies, and driving root‑cause analysis and preventive actions.

• Lead production support triage efforts, manage bridge line troubleshooting, engage in technical research, and escalates issues to leadership as needed.
• Ensure all impacts are accurately recorded, documents and wikis are updated, and support documentation of application flows and customer experience is maintained.
• Interpret monitors, dashboards, and logs to identify business impacts and communicate with leadership and vendors.
• Manage activities to identify incident root cause, resolution, preventative actions, change requests, and report on incident data quality.
• Promote and enforce production governance during triage, identify failure scenarios and opportunities for improvement.
• Serve as subject matter expert for applications within a portfolio, leveraging extensive knowledge of application functionalities and flows.
• Assess and prioritize research requests, ad‑hoc reports, and offline incidents, delegating work to team members as needed.

• The APS&E Production Services team is responsible for end‑to‑end client‑facing business‑aligned infrastructure engagements, design, build, delivery operations, and data management support.
• Seeking an experienced IT Security professional with 5+ years of SIEM/SOAR expertise to manage and optimize Splunk for advanced threat detection, automation, and incident response.
• Collaborate with IT teams to build detection rules, automation playbooks, and dashboards that strengthen security posture in a fast‑paced Fin Tech environment.
• Manage, configure, and optimize SIEM/SOAR platforms (primarily Splunk).
• Develop detection rules, dashboards, and automation playbooks.
• Monitor and analyze security events to identify threats and reduce response times.
• Deliver above‑and‑beyond services to internal customers to ensure business continuity with meet‑or‑exceed SLAs.
• Support monitoring, incident response, problem engagement during triage, service restoration, root‑cause identification, and coordination of permanent fixes in accordance with best practices.
• Be highly experienced in IAM, access and entitlement technologies, and possess strong knowledge of Windows OS, Red Hat Linux, SQL/Oracle, and other database technologies.
• Proficient with Red Hat Linux Open Shift containers, Atlassian JIRA, Horizon platforms, Git Hub, Ansible, Jenkins, ITSM Remedy, Dynatrace, Power Shell/Unix scripting, cloud, and CI/CD Dev Ops tools.

• Must be able to work Saturday or Sunday when on call or for new releases.
• Well conversant with the 5 C's of cybersecurity:
  Change, Compliance, Cost, Continuity, and Coverage.
• Passionate about cybersecurity and automation, a SIEM/SOAR expert to strengthen cyber resilience.
• 5+ years of experience in SIEM/SOAR administration and security operations.
• Strong hands‑on knowledge of Splunk (searches, dashboards, alerts, playbooks).
• Solid understanding of cybersecurity frameworks, threat detection, and incident response.
• 5+ years of production support experience with expert-level knowledge of MFA technologies, Splunk, Windows OS, SQL/Oracle, and Unix/Linux.
• Excellent knowledge of IAM, SRE, and Dev Ops domains.
• Senior-level production support experience and troubleshooting skills in SIEM/SOAR and IAM technologies.
• Compliance with bank regulatory and compliance policies.
• Expert-level Linux experience and advanced Splunk query skills.
• Well versed with ITIL framework.
• Excellent communication skills, able to explain issues, impacts, and solutions clearly.
• Team player, able to collaborate with internal and external teams.
• Available for on‑call coverage and willing to work off hours as needed.
• Willing to work on-site 3 days a week as per bank policies.
• Strong work ethic and pride in accomplishments.
• Ability to handle pressure, stress, and attention to detail.
• Problem‑solving skills for addressing complex challenges creatively.

• CISSP or other equivalent information security certificates.
• Motivated cybersecurity professional with a drive for results and success.
• Persistent mindset, resilient in the face of difficulties.
• Familiarity with Tower, Blade Logic, and network technologies.

• Adaptability
• Analytical Thinking
• Influence
• Production Support
• Risk Management
• Automation
• Collaboration
• Innovative Thinking
• Result Orientation
• Solution Design
• Business Acumen
• Dev Ops Practices
• Project Management
• Solution Delivery Process
• Stakeholder Management

1st shift (United States of America)

40