Raymond James

Lead Engineer, IT Security (SIEM/Splunk)

Raymond James  •  St. Petersburg, FL (Hybrid)  •  3 hours ago
Apply
AI can make mistakes so check important info. Chat history is never stored.

Job Description

Analyzes and monitors the organization's cyber security measures; responds to actual penetration attempts by malicious hackers.

This position follows our hybrid workstyle policy: Expected to be in a Raymond James office location a minimum of 12 days a month.

Please note: This role is not eligible for Work Visa sponsorship, either currently or in the future.

The financial services industry is constantly under attack by sophisticated cyber adversaries that range from nation states to criminals. In response, the Raymond James Cyber Threat Center (CTC) is charged with ensuring all equities are secure against all tiers of adversaries. We are the central hub for Computer Network Operations and are on the front lines of security incident response, threat hunting, and intelligence. You'll be working with emerging technologies to solve challenging security problems in a fast-paced and continuously evolving environment, while helping steer the direction and evolution of the team. This highly visible team within the organization evaluates threats to the environment and dynamically adjusts to the ever-changing threat landscape by applying practical security knowledge to developing new detective measures to protect the firm.

The CTC Lead Engineer, IT Security, is a primary member of the CTC and serves as a Splunk subject matter expert responsible for the design, development, creation, and maintenance of advanced Splunk content in support of Incident Response, HUNT, Cyber Threat Intelligence, and Cyber Crime operations. This role provides technical leadership for Splunk engineering, administration, optimization, automation, and AI-enabled security analytics across the enterprise.

The Lead Engineer is also part of the Raymond James Splunk administration team and is responsible for the operation and maintenance of the Raymond James Splunk Cloud environment, including search heads, indexers, heavy and universal forwarders, and the enterprise Syslog-NG environment. The role partners closely with security operations, threat detection, incident response, infrastructure, cloud, and application teams to ensure reliable log ingestion, scalable platform performance, actionable detections, and continuous improvement through automation, analytics, and AI-assisted capabilities.

Responsibilities:

  • Lead the architecture, engineering, administration, and ongoing optimization of Splunk Cloud across a large-scale, distributed, hybrid, environment

  • Responsible for Splunk Cloud platform health, including indexer/search head clustering, deployment servers, forwarder management, storage optimization, license utilization, retention policies, performance tuning, and system availability

  • Develop, tune, and maintain Splunk content, including dashboards, reports, alerts, correlation searches, data models, field extractions, props/transforms, lookups, macros, and CIM-aligned knowledge objects

  • Lead automation initiatives across Splunk and security operations, including automated log onboarding, health checks, evidence collection, and ticket creation

  • Work with SOAR platforms, scripting, APIs, CI/CD pipelines, and infrastructure-as-code practices to automate repeatable Splunk administration, content management, and operational workflows

  • Troubleshoot complex Splunk issues related to ingestion, parsing, indexing, searching, acceleration, dashboards, apps/add-ons, authentication, integrations, storage, and platform performance

  • Lead administration and operational support for the global Syslog-NG environment

  • Strong troubleshooting skills across Linux, Windows, networking, storage, authentication, distributed systems, and cloud environments.

  • Shares in a weekly on-call rotation and acts as an escalation point for major incidents and associates of Raymond James.

Experience and Skills:

  • B.S. in Computer Science, Computer Engineering, or related degree and a minimum of five (5) years of related experience in Splunk engineering, administration, and content development

  • System administrator experience in Linux, Windows, or OSX operating systems

  • System administrator experience in maintenance and management of enterprise syslog environment

  • Knowledge of networking and the common network protocols

  • Experience with development of complex Splunk analytics

  • Familiar with interacting with a variety of APIs and using an API platform such as Postman, Insomnia, or Hopscotch to develop and test data integrations

  • Demonstrated ability to create complex scripts, develop tools, or automate processes in PowerShell, Python or Bash.

  • One or more of the following certifications or the ability to obtain within 1 year:

    • Splunk Cloud Certified Admin

    • Splunk Certified Architect

    • Splunk Certified Consultant

    • CISSP: Certified Information Systems Security Professional

    • CCNA: Cisco Certified Network Associate

Competencies:

  • Analysis: Identify and understand issues, problems and opportunities; compare data from different sources to draw conclusions.

  • Communication: Clearly convey information and ideas through a variety of media to individuals or groups in a manner that engages the audience and helps them understand and retain the message.

  • Exercising Judgment and Decision Making: Use effective approaches for choosing a course of action or developing appropriate solutions; recommend or take action that are consistent with available facts, constraints, and probable consequences.

  • Technical and Professional Knowledge: Demonstrate a satisfactory level of technical and professional skill, or knowledge, in position-related areas; remain current with developments and trends in areas of expertise.

  • Building Effective Relationships: Develop and use collaborative relationships to facilitate the accomplishment of work goals.

  • Client Focus: Make internal and external clients, and their needs, a primary focus of actions; develop and sustain productive client relationships.

Education

Bachelor’s, High School (HS) (Required)

Work Experience

General Experience - 3 to 6 years

Certifications

Travel

Less than 25%

Workstyle

Hybrid

The total compensation for this position includes base salary or wages, and may include components such as additional compensation (cash or equity), discretionary bonuses, or commissions. This position is eligible for a benefits package that may include medical, dental, and vision; life insurance; critical illness insurance and accident insurance; disability benefits; retirement savings; paid time off (including vacation, holidays, and sick leave); and parental leave. Eligibility for benefits and specific offerings may vary based on position and employment status. To view more details of the benefits offered, visit Myrjbenefits.com.

At Raymond James our associates use five guiding behaviors (Develop, Collaborate, Decide, Deliver, Improve) to deliver on the firm's core values of client-first, integrity, independence and a conservative, long-term view.

We expect our associates at all levels to:
• Grow professionally and inspire others to do the same
• Work with and through others to achieve desired outcomes
• Make prompt, pragmatic choices and act with the client in mind
• Take ownership and hold themselves and others accountable for delivering results that matter
• Contribute to the continuous evolution of the firm

At Raymond James – as part of our people-first culture, we honor, value, and respect the uniqueness, experiences, and backgrounds of all of our Associates. When associates bring their best authentic selves, our organization, clients, and communities thrive. The Company is an equal opportunity employer and makes all employment decisions on the basis of merit and business needs.

Raymond James

About Raymond James

Founded in 1962 and a public company since 1983, Raymond James Financial, Inc. is a Florida-based diversified holding company providing financial services to individuals, corporations and municipalities through its subsidiary companies engaged primarily in investment and financial planning, in addition to capital markets and asset management. The firm's stock is traded on the New York Stock Exchange (RJF).

Through its three broker/dealer subsidiaries, Raymond James Financial has approximately 8,700 financial advisors throughout the United States, Canada and overseas. Total client assets are $1.26 trillion (as of 10/25/2023).

Raymond James has been recognized nationally for its community support and corporate philanthropy. The company has been ranked as one of the best in the country in customer service, as a great place to work and as a national leader in support of the arts.

Industry
Finance & Insurance
Company Size
10,000+ employees
Headquarters
St. Petersburg, Florida
Year Founded
1962
Social Media