Senior Splunk / Cribl Engineer

Job Description

This position is part of AbbVie's Information Security & Risk Management (ISRM) team. We are here to put our partners in a position to succeed. We do it by providing the knowledge, tools, and support they need to effectively use data and technology while also effectively managing risk.

AbbVie Information Security is looking for a highly motivated and talented individual to join the Cyber Security Engineering (CSE) Team. The Cyber Security Engineering installs, manages, optimizes, automates the tools in use by the broader Information Security and Risk Management teams.

Data Management services are a foundation for the CSE team's portfolio, inclusive of data transformations and pipelining to downstream systems. The CSE team acts as subject matter experts and assists with training and development of their userbase, expanding beyond the scope of Information Security and Risk Management.

This is an expansion of capabilities within the Cyber Security Engineering Team, focusing on the data pipelines, data models, and adherence to standards across our datasets. Grow with us as a Data Engineer, Cyber Security Engineering (CSE) to raise our tools and skilled analysts up so that they may help our business to continue to have remarkable impacts on people's lives.

This role is responsible for delivering the value of data management toolsets, inclusive of the data pipelines and the SIEM platform. The Data Engineer will assist with data onboarding, normalization/harmonization, pipelining, data modelling, and documentation while striving for automation and quality delivery.

Our team focuses on leveraging CI/CD pipelines for automated builds and deployments across all of our supported toolsets, while implementing a mix of legacy and cloud-native infrastructure and services. The ideal candidate must be comfortable to adapting and learning new terminology, processes, and techniques in use within Information Security teams and be comfortable working in Scrum and Agile/DevOps methodologies.

In this role you will be responsible for:

Implementation and development of data pipelines that feed the SIEM and other analytics engines using existing toolsets

Creating structured data sets from unstructured data

Build data models and enhance standard schemas across different technologies

Normalize/Harmonize data across various platforms

Verify data integrity and translations against multiple systems

Creation and support of analytic toolsets outside the SIEM

Assist in analysis and defining data requirements and specifications

Assist in analysis and planning for anticipated changes in data capacity requirements

Assist in developing and documenting data standards, policies, and procedures

Perform compilation, cataloging, caching, distribution, and retrieval of data within the SIEM and other platforms

Analyze data sources to provide actionable recommendations

Develop standards and automations in metrics aggregation and dissemination

Manage data lineage across various systems

Designs enhancements, updates, and programming changes for portions and subsystems of data pipelines, repositories or models for structured/unstructured data.

Analyzes design and determines coding, programming, and integration activities required based on specific objectives and established project guidelines.

Executes and writes portions of testing plans, protocols, and documentation for assigned portion of application; identifies and debugs issues with code and suggests changes or improvements.

Participates as a member of a project team to develop reliable, cost effective, and high-quality solutions for data systems, models, or components.

Significant Work Activities -Continuous sitting for prolonged periods (more than 2 consecutive hours in an 8 hour day)