Splunk Engineer - Enterprise Security | SOAR
Genesis IT Recruitment
Posted 5 days ago
- Permanent Full-Time
- Onsite Work - Canberra ACT
- Government Security Clearance is required
A leading technology company is seeking an experienced Splunk Engineer to manage and optimise its Splunk environment, ensuring the effectiveness and efficiency of its Security Information and Event Management (SIEM) system.
In this role, you will play a critical part in overseeing the Splunk architecture, including search heads, indexers, deployment servers, and heavy forwarders, while leveraging your expertise in Enterprise Security (ES) and Security Orchestration, Automation, and Response (SOAR).
Key Responsibilities:
- Manage updates for Splunk and Splunk ES applications, ensuring integrations, dashboards, and health checks are up to date.
- Maintain existing on-premises Splunk Enterprise and SOAR environments, including patching, application updates, integrations, and health checks.
- Oversee and maintain the heavy forwarder logging infrastructure.
- Onboard new data and log sources, running queries and searches to meet request requirements.
- Conduct regular data quality and data model assessments to ensure optimal performance.
- Assist in developing and maintaining SOAR playbooks and automation workflows.
- Collaborate on the development of new use cases and rules for enhanced security monitoring.
- Investigate new technologies to support vulnerability analysis and remediation.
- Stay informed on the latest security threats, vulnerabilities, and industry trends.
Key Requirements:
- A minimum of 3 years in cybersecurity, with a strong understanding of common threats, vulnerabilities, and attack vectors.
- Hands-on experience with enterprise-level Splunk implementations, including clustered architectures.
- Advanced proficiency with Splunk ES data models and the Splunk Search Processing Language (SPL).
- Experience with DevOps tools such as Git/GitHub, Docker, and Kubernetes.
- Familiarity with ITIL processes and tools.
- Strong problem-solving and analytical capabilities.
- Exceptional communication skills, both written and verbal.
- Relevant Splunk certification(s) is highly desirable, but not essential.
- Must hold a high level government security clearance.
Salary Package: $180K-$200K (incl. Base Salary, Superannuation, Bonus)
Job Ref: 3925554
TO APPLY: please click on the appropriate link.
About Genesis IT Recruitment
This company does not have any further information provided at this time. We encourage you to research the company by searching for them to learn more about the company or role in question before applying.
Cloud Security Engineer - IPS | IDS | SIEM
Genesis IT Recruitment
AWS Security Engineer (6 - 8 month Contract) NV2+
Assegai Solutions Pty Ltd
Security Solutions Architect
Robert Walters
Cyber Security Engineer
Balam Pty Ltd
SOC (Security Operations Centre) Manager
SovereignSourced Pty Ltd
TSPV Security Clearance - EOI
Cleared Recruitment
Cyber Security Analyst / Assessor
Federal Court of Australia
IT Architects (Security Cleared ONLY)
The Architecture Practice
