Smarttech247 is hiring for a Splunk Security Engineer who will play a crucial role in designing, implementing and managing our security infrastructure. This position offers an exciting opportunity to work with cutting-edge technologies, particularly focusing on Splunk and Azure Sentinel.
Responsibilities: Splunk Deployment and Configuration: Lead the deployment, configuration and optimisation of Splunk solutions to ensure effective log management, security information and event management (SIEM).
Security Incident Response: Collaborate with the incident response team to analyse and respond to security incidents, utilising Splunk as a primary tool for investigation and analysis.
Security Monitoring: Develop and maintain robust security monitoring solutions using Splunk to detect and respond to security threats proactively.
Threat Hunting: Conduct proactive threat hunting exercises using Splunk queries and other tools to identify potential security risks and vulnerabilities.
Collaboration and Training: Collaborate with cross-functional teams to enhance overall security posture and provide training to staff on the effective use of Splunk and related security tools.
Documentation: Create and maintain comprehensive documentation related to Splunk configurations, security procedures and incident response processes.
Qualifications: Proven experience with maintenance and deployment of Splunk Core and Enterprise Security.
In-depth knowledge of Splunk architecture, searches, dashboards and alerts.
2+ years of professional experience in Security/IT/System/Network Administration and Engineering.
Experience with implementation and operation of any of the following security solutions: SIEM, DLP, Firewalls, WAF, VPN, EDR, IPS/IDS, Email Gateway, etc.
Knowledge of cloud architecture and security (AWS, Azure) is desired.
Strong understanding of cybersecurity principles and best practices.
Excellent analytical and problem-solving skills.
Degree in Computer Science, Information Security, or a related field.
Certifications such as Splunk Core/Cloud Admin are a plus.
Apply Now To apply to this role, please submit your CV accompanied by your cover letter through the form below.
#J-18808-Ljbffr