Hybrid, 1 day p/w in either Preston, Filton or Farnborough Salary:
£45,000 - £55,000 + bonus + excellent bens.
You will be joining an expansion to an existing cyberengineering team, supporting additional requirements that sits within Enterprise IT, providing enterprise IT services across the UK businesses and internationally.
This would also offer a natural progression route and the opportunity to develop further.
What you’ll be doing - CyberSecurityEngineer – Splunk · Installation & support of Splunk Enterprise Platform · Working with Admin ON Demand / Splunk PS to conclusion of issues within the environment · On-Boarding new data sources and Apps and Add-ons into Splunk · Building/testing log ingestion sources · Development of automation scripts using Python and various toolset API’s · Supporting SIEM and SOAR technologies · Provide ongoing management and administration of cybersecurity solutions · Provide support to projects delivering and implementation of cybersecurity solutions · Where required, integrate with service operations and project delivery to enable quick and compliant change and service stability · Installation & support of security toolset hardware Your skills and experiences - CyberSecurityEngineer – Splunk Essential:
· Knowledge of deploying, maintaining, and configuring the Splunk Enterprise Platform · A strong technical background with a proven experience in a CyberSecurity role · Good understanding of architecture and configurations of large-scale networks (30,000+ devices) and the underlying security technologies · Experience of working with system management toolsets in a technical capacity · Previous experience and exposure to Windows Event Collection/Forwarding (build, configuration, and tuning), Log sources and ingestion, CIM Mapping, RegEx Field Extractions, Syslog + Parsing Desirable:
· Ideally with exposure of VMware, Windows, UNIX, and associated technologies · Trained to Splunk Enterprise Certified Admin level · Relevant Security Certifications are desirable but not essential (CISSP, GIAC (Advanced Certifications) e.g., GCIA, GCIH or GCFA and CompTIA Security + CBSbutler FiltonEngland
