Senior Splunk Engineer

Social network you want to login/join with:

Senior Splunk Engineer is required for a European leader in cloud implementation, application development, and managed services, working within a leading financial company based in London & Cheshire.

12-Month Contract (extension possible)

2 days a week in the office

Inside IR35

• Assist in the Insider Threat Correlation Engine integration of new data feeds.
• Work as a bridge between Operations and Technology teams, owning end-to-end tasks, reporting to the Technical Lead, and providing regular status updates.
• Knowledge of Splunk Enterprise, Splunk Cloud, and Splunk Enterprise Security is essential, including experience with Splunk Forwarders.
• Data ingestion and extraction, with good experience in installing and configuring Splunk Add-Ons to bring security logs into Splunk.
• Build correlation searches and have a good understanding of the security domain.
• DevOps experience, including Shell scripting, Python, and Jenkins.
• Security Data Analytics: understanding security data and modeling data according to requirements.
• Hands-on experience with Splunk Enterprise Security.
• Experience with Risk-Based Analysis (RBA) and Behavior Analytics (BA), with a deep understanding of BA.
• Intermittent work on Splunk Dashboard Studio.
• Ability to write efficient SPL (Splunk Processing Language).
• Skills in data onboarding and data mapping.
• Experience with Machine Learning to train BA models.
• ETL engineering capabilities.
• Knowledge of SQL, Tableau, and advanced Excel.
• Understanding and basic experience with industry-leading SOAR platforms.
• Act as a Senior Developer to manage the RBA framework.
• Serve as a bridge between Operations and Technology teams, with detailed knowledge of integration approaches for data onboarding.
• Ownership of end-to-end tasks and management of the engineering team.
• Report to the Technical Lead and provide weekly progress updates.

This is an exciting opportunity for a Senior Splunk Engineer working with a European leader in cloud implementation within the financial sector. If interested, please apply with your CV.