AddressGreenlight Australia are urgently seeking an experienced SIEM Splunk Engineer / Consultant to join our program delivery team onsite in Sydney. This position requires NV1 clearance. This is for an initial 6 month assignment with a high likelihood of extension.
Tasks & Duties :
Working under the direction of the Project Manager and PS SIEM SME, the SIEM Consultant will have the ability to;
- Design, Build and Document Use Cases with the Splunk Platform
- Normalise logs to ensure that data is consistently formatted and standardised for effective analysis andcorrelation
- Identify and isolate security event of interest from log sources
- Work with our client as a trusted security advisor
- Identify and mitigate performance issues, such as speed and efficiency delays in search queries in the SIEM orlog analysis environment
- Develop correlation searches within the Splunk environment.
Skills/Experience :
- Splunk
- MS Sentinel
- Crowdstrike
- Developing use cases Building playbooks, run sheets
- Customer/Client facing experience
- Past experience working in a SOC environment (highly advantageous but not essential)
- NV1 clearance (Essential)
Does this role match your skills and experience? If you are interested to hear more please apply now for immediate consideration
