Splunk Engineer
Posted 11 days 2 hours ago by The People Network
£75,000 - £90,000 Annual
Permanent
Not Specified
Other
Hertfordshire, Hemel Hempstead, United Kingdom, HP1 1
Job Description
Splunk EngineerAre you an experienced Splunk Engineer with a knack for SIEM tools and a desire for a new challenge? Join an established Cyber Security Operations team in the Aerospace, Defence, and Security Sector. THIS ROLE IS HYBRD BASED 3 DAYS A WEEK IN HEMEL HEMPSTEAD.Essential Skills:
- Must hold Splunk Cloud Certified Admin or Splunk Enterprise Certified Admin Certificate.
- Current or previous experience in a Senior Security Engineering role.
- Demonstrable experience in security incident response, malware analysis, SIEM design and configuration.
- Security solution design expertise.
- AWS and Azure certifications and practical experience.
- Be SC cleared or willing to undergo SC security clearance
- Maintain and support the Security technology stack for our MSSP services.
- Build and Maintain Splunk solutions
- Manage support incidents and drive improvements in the Cyber Defence Feedback Loop.
- Be a Splunk specialist and offer Splunk expertise.
- Troubleshoot security and SIEM technologies in a fast-paced SOC environment.
- Resolve customer or Analyst needs by investigating health alerts, tuning rules, and making security policy recommendations.
- Inform security eco-system design for various environments (Cloud, on-prem, SaaS, PaaS, IaaS).
- Consult on third-party Splunk cloud hosting environments and best practices.
- Collaborate with Security Architects to shape security solutions in Splunk.
- Conduct security reviews and recommend improvements.
- Implement, maintain, and monitor operational security systems.
- Drive continuous service improvement.
- Perform extensive data analysis to enhance security controls.
- Share knowledge within the SOC and represent in meetings.
- Report on customer environment statuses and maintain log source issue tracks.
- Coordinate with SOC Analysts for rule updates and system administration.
- Assist in protecting critical cyber defence infrastructure.
- Investigate and respond to security incidents.
- Contribute to root cause analysis and lessons learned post-incident.
- Apply rule changes and act on behalf of the Security Engineering Lead when needed.