Automation Engineer/Splunk

NL  ‐ Onsite
This project has been archived and is not accepting more applications.
Browse open projects on our job board.

Description

Job Purpose

Our Client is looking for Automation Engineer.

The CyberDefence Automation & Orchestration engineer is part of the CyberDefence Content Engineering Team. The Automation engineer's purpose is to develop requested Automation requirements from the wider CyberDefence organization. These requirements are submitted as project backlog items in MS DevOps and are typically developed in Splunk Phantom soar tool.

The outcome of these automations is one or a combination of below:

-Automation of Manual operator tasks (process efficiency) to safe operator time.

  • Automation of CyberDefence tasks which are not possible to execute Manually.
  • Automation of detecting Cyber hygiene non-compliances and automated response action.
  • Enrich the Automation coverage by adding more interface to various systems.

All automations together should result in

1) faster detection and Response on Cyber Events

2) More coverage with same amount of cyber Analyst resources

Job Description

Perform as CyberDefence Automation & Orchestration engineer in CyberDefence which has Two main areas of focus:

  • Pick-up and deliver Automation request from the DevOps room and interface with the requestor(s) to confirm the automation requirements are fulfilled to satisfaction
  • Maintain the automation development code in production including coding administration so that the team can modify/troubleshoot the developed automation in future

Skills & Requirements:

  • Prefer Master of Science in Computer Science or similar.
  • Relevant experience 3+ years.
  • Mandatory experience using Splunk - Phantom Security Automation and Orchestration (SA&O) and development of playbooks on Phantom.
  • Mandatory 1+ years of experience with API integration and development. Mandatory experience of Security API Integration with Splunk.
  • Mandatory experience with Scripting using Python and its related libraries.

Key Skills:

  • Optional experience with log data aggregation solutions (eg Splunk, Kafka, etc.)
  • Proficient in developing automation code and scripts using Phantom, Python, logic Apps and other programming languages.
  • Consulting skills.
  • An understanding of software development standard methodologies to identify requirements and guide Phantom's partners to develop new apps and playbooks.
  • Ambitious, motivated, and team focused.
  • Strong team player, must be able to work with others and contribute to help solve complex issues.
  • Demonstrate broad knowledge of MS Windows, Unix-based and mid-range platform systems used to deliver commercial enterprise applications as well as cloud environments.
  • Understanding of a Content Engineering Team's mission to drive security improvements through Automations and partnerships with the relevant stakeholders.

Michael Bailey International is acting as an Employment Business in relation to this vacancy.

Start date
ASAP
Duration
Min 4 months +
(extension possible)
From
Michael Bailey Associates - Amsterdam
Published at
06.08.2020
Project ID:
1953918
Contract type
Freelance
To apply to this project you must log in.
Register