Description
JOB DESCRIPTION
We are working with a large financial client, to source a highly skilled Splunk engineer to assist with the following duties:
- Tuning and configuration of Splunk App for Enterprise Security (ES)
- Develop and build content and correlations in Splunk
- Assist in development of advanced security use cases in Splunk
- Deploy and maintain the Splunk User Behavior Analytics App for Splunk (UBA)
- Work with Operations and Risk Management Teams for building Dashboards and Reports
- Onboarding logs/alerts related to information security products
- Assist and/or train Operations and Risk Management Teams analysts on Content. Provide analyst training and workshops on using Splunk, and introduce new content, alerts and data sources
REQUIREMENTS
- At least 5+ years' experience with information security experience, OR at least 10+ years consisting of a combination of education/technical training AND work/military experience.
- Extensive experience using SIEM systems and security event correlation. (Must be able to prove at least 3+ years' experience).
- 2+ years of Splunk Experience managing Splunk App for Enterprise Security
- Strong analytical and excellent troubleshooting skills
- Must have strong interpersonal skills with the ability to easily and effectively interact with technical, non-technical, support, and business staff at all levels
- Must have right to work in the UK
DESIRABLE SKILLS/EXPERIENCE
- Educated to bachelor degree level (preferably in computer science, information security or related sciences)
- Proficient in Python and Bash Scripting is desired
Extremely Competitive rates
Option to work remote 2 days per week