Splunk Engineer

Splunk Engineer

Are you an experienced Splunk Engineer with a knack for SIEM tools and a desire for a new challenge? Join an established Cyber Security Operations team in the Aerospace, Defence, and Security Sector.
THIS ROLE IS HYBRD BASED 3 DAYS A WEEK IN HEMEL HEMPSTEAD.
Essential Skills:

• Must hold Splunk Cloud Certified Admin or Splunk Enterprise Certified Admin Certificate.
• Current or previous experience in a Senior Security Engineering role.
• Demonstrable experience in security incident response, malware analysis, SIEM design and configuration.
• Security solution design expertise.
• AWS and Azure certifications and practical experience.
• Be SC cleared or willing to undergo SC security clearance

Your Role:

• Maintain and support the Security technology stack for our MSSP services.
• Build and Maintain Splunk solutions
• Manage support incidents and drive improvements in the Cyber Defence Feedback Loop.
• Be a Splunk specialist and offer Splunk expertise.
• Troubleshoot security and SIEM technologies in a fast-paced SOC environment.
• Resolve customer or Analyst needs by investigating health alerts, tuning rules, and making security policy recommendations.

Responsibilities:

• Inform security eco-system design for various environments (Cloud, on-prem, SaaS, PaaS, IaaS).
• Consult on third-party Splunk cloud hosting environments and best practices.
• Collaborate with Security Architects to shape security solutions in Splunk.
• Conduct security reviews and recommend improvements.
• Implement, maintain, and monitor operational security systems.
• Drive continuous service improvement.
• Perform extensive data analysis to enhance security controls.
• Share knowledge within the SOC and represent in meetings.
• Report on customer environment statuses and maintain log source issue tracks.
• Coordinate with SOC Analysts for rule updates and system administration.
• Assist in protecting critical cyber defence infrastructure.
• Investigate and respond to security incidents.
• Contribute to root cause analysis and lessons learned post-incident.
• Apply rule changes and act on behalf of the Security Engineering Lead when needed.

A great opportunity to move your Splunk career forward and work on exciting security country critical projects.

If you are interested please apply ASAP. The People Network is an employment agency and will respond to all applicants within three - five working days. If you do not hear within these timescales please feel free to get in touch.