
Analyzes and monitors the organization's cyber security measures; responds to actual penetration attempts by malicious hackers.
This position follows our hybrid workstyle policy: Expected to be in a Raymond James office location a minimum of 12 days a month.
Please note: This role is not eligible for Work Visa sponsorship, either currently or in the future.
The financial services industry is constantly under attack by sophisticated cyber adversaries that range from nation states to criminals. In response, the Raymond James Cyber Threat Center (CTC) is charged with ensuring all equities are secure against all tiers of adversaries. We are the central hub for Computer Network Operations and are on the front lines of security incident response, threat hunting, and intelligence. You'll be working with emerging technologies to solve challenging security problems in a fast-paced and continuously evolving environment, while helping steer the direction and evolution of the team. This highly visible team within the organization evaluates threats to the environment and dynamically adjusts to the ever-changing threat landscape by applying practical security knowledge to developing new detective measures to protect the firm.
The CTC Lead Engineer, IT Security, is a primary member of the CTC and serves as a Splunk subject matter expert responsible for the design, development, creation, and maintenance of advanced Splunk content in support of Incident Response, HUNT, Cyber Threat Intelligence, and Cyber Crime operations. This role provides technical leadership for Splunk engineering, administration, optimization, automation, and AI-enabled security analytics across the enterprise.
The Lead Engineer is also part of the Raymond James Splunk administration team and is responsible for the operation and maintenance of the Raymond James Splunk Cloud environment, including search heads, indexers, heavy and universal forwarders, and the enterprise Syslog-NG environment. The role partners closely with security operations, threat detection, incident response, infrastructure, cloud, and application teams to ensure reliable log ingestion, scalable platform performance, actionable detections, and continuous improvement through automation, analytics, and AI-assisted capabilities.
Responsibilities:
Lead the architecture, engineering, administration, and ongoing optimization of Splunk Cloud across a large-scale, distributed, hybrid, environment
Responsible for Splunk Cloud platform health, including indexer/search head clustering, deployment servers, forwarder management, storage optimization, license utilization, retention policies, performance tuning, and system availability
Develop, tune, and maintain Splunk content, including dashboards, reports, alerts, correlation searches, data models, field extractions, props/transforms, lookups, macros, and CIM-aligned knowledge objects
Lead automation initiatives across Splunk and security operations, including automated log onboarding, health checks, evidence collection, and ticket creation
Work with SOAR platforms, scripting, APIs, CI/CD pipelines, and infrastructure-as-code practices to automate repeatable Splunk administration, content management, and operational workflows
Troubleshoot complex Splunk issues related to ingestion, parsing, indexing, searching, acceleration, dashboards, apps/add-ons, authentication, integrations, storage, and platform performance
Lead administration and operational support for the global Syslog-NG environment
Strong troubleshooting skills across Linux, Windows, networking, storage, authentication, distributed systems, and cloud environments.
Shares in a weekly on-call rotation and acts as an escalation point for major incidents and associates of Raymond James.
Experience and Skills:
B.S. in Computer Science, Computer Engineering, or related degree and a minimum of five (5) years of related experience in Splunk engineering, administration, and content development
System administrator experience in Linux, Windows, or OSX operating systems
System administrator experience in maintenance and management of enterprise syslog environment
Knowledge of networking and the common network protocols
Experience with development of complex Splunk analytics
Familiar with interacting with a variety of APIs and using an API platform such as Postman, Insomnia, or Hopscotch to develop and test data integrations
Demonstrated ability to create complex scripts, develop tools, or automate processes in PowerShell, Python or Bash.
One or more of the following certifications or the ability to obtain within 1 year:
Splunk Cloud Certified Admin
Splunk Certified Architect
Splunk Certified Consultant
CISSP: Certified Information Systems Security Professional
CCNA: Cisco Certified Network Associate
Competencies:
Analysis: Identify and understand issues, problems and opportunities; compare data from different sources to draw conclusions.
Communication: Clearly convey information and ideas through a variety of media to individuals or groups in a manner that engages the audience and helps them understand and retain the message.
Exercising Judgment and Decision Making: Use effective approaches for choosing a course of action or developing appropriate solutions; recommend or take action that are consistent with available facts, constraints, and probable consequences.
Technical and Professional Knowledge: Demonstrate a satisfactory level of technical and professional skill, or knowledge, in position-related areas; remain current with developments and trends in areas of expertise.
Building Effective Relationships: Develop and use collaborative relationships to facilitate the accomplishment of work goals.
Client Focus: Make internal and external clients, and their needs, a primary focus of actions; develop and sustain productive client relationships.
Education
Bachelor’s, High School (HS) (Required)
Work Experience
General Experience - 3 to 6 years
Certifications
Travel
Less than 25%
Workstyle
Hybrid
The total compensation for this position includes base salary or wages, and may include components such as additional compensation (cash or equity), discretionary bonuses, or commissions. This position is eligible for a benefits package that may include medical, dental, and vision; life insurance; critical illness insurance and accident insurance; disability benefits; retirement savings; paid time off (including vacation, holidays, and sick leave); and parental leave. Eligibility for benefits and specific offerings may vary based on position and employment status. To view more details of the benefits offered, visit Myrjbenefits.com.
At Raymond James our associates use five guiding behaviors (Develop, Collaborate, Decide, Deliver, Improve) to deliver on the firm's core values of client-first, integrity, independence and a conservative, long-term view.
We expect our associates at all levels to:
• Grow professionally and inspire others to do the same
• Work with and through others to achieve desired outcomes
• Make prompt, pragmatic choices and act with the client in mind
• Take ownership and hold themselves and others accountable for delivering results that matter
• Contribute to the continuous evolution of the firm
At Raymond James – as part of our people-first culture, we honor, value, and respect the uniqueness, experiences, and backgrounds of all of our Associates. When associates bring their best authentic selves, our organization, clients, and communities thrive. The Company is an equal opportunity employer and makes all employment decisions on the basis of merit and business needs.

Founded in 1962 and a public company since 1983, Raymond James Financial, Inc. is a Florida-based diversified holding company providing financial services to individuals, corporations and municipalities through its subsidiary companies engaged primarily in investment and financial planning, in addition to capital markets and asset management. The firm's stock is traded on the New York Stock Exchange (RJF).
Through its three broker/dealer subsidiaries, Raymond James Financial has approximately 8,700 financial advisors throughout the United States, Canada and overseas. Total client assets are $1.26 trillion (as of 10/25/2023).
Raymond James has been recognized nationally for its community support and corporate philanthropy. The company has been ranked as one of the best in the country in customer service, as a great place to work and as a national leader in support of the arts.