• Permanent Full-Time
• Onsite Work - Melbourne CBD
• Government Security Clearance is required

A leading technology company is seeking an experienced Splunk Engineer to manage and optimise its Splunk environment, ensuring the effectiveness and efficiency of its Security Information and Event Management (SIEM) system.

In this role, you will play a critical part in overseeing the Splunk architecture, including search heads, indexers, deployment servers, and heavy forwarders, while leveraging your expertise in Enterprise Security (ES) and Security Orchestration, Automation, and Response (SOAR).

Key Responsibilities:

• Manage updates for Splunk and Splunk ES applications, ensuring integrations, dashboards, and health checks are up to date.
• Maintain existing on-premises Splunk Enterprise and SOAR environments, including patching, application updates, integrations, and health checks.
• Oversee and maintain the heavy forwarder logging infrastructure.
• Onboard new data and log sources, running queries and searches to meet request requirements.
• Conduct regular data quality and data model assessments to ensure optimal performance.
• Assist in developing and maintaining SOAR playbooks and automation workflows.
• Collaborate on the development of new use cases and rules for enhanced security monitoring.
• Investigate new technologies to support vulnerability analysis and remediation.
• Stay informed on the latest security threats, vulnerabilities, and industry trends.

Key Requirements:

• A minimum of 3 years in cybersecurity, with a strong understanding of common threats, vulnerabilities, and attack vectors.
• Hands-on experience with enterprise-level Splunk implementations, including clustered architectures.
• Advanced proficiency with Splunk ES data models and the Splunk Search Processing Language (SPL).
• Experience with DevOps tools such as Git/GitHub, Docker, and Kubernetes.
• Familiarity with ITIL processes and tools.
• Strong problem-solving and analytical capabilities.
• Exceptional communication skills, both written and verbal.
• Relevant Splunk certification(s) is highly desirable, but not essential.
• Must hold a high level government security clearance.

Salary Package: $180K-$200K (incl. Base Salary, Superannuation, Bonus)

Job Ref: 3925554

TO APPLY: please click on the appropriate link.