- 12 Month Contract + 2 X 12 Month Extension Option
- Minimum Baseline Clearance
- Canberra / Offsite -Work From Home
Our Client, a large Federal Government Department is seeking an experienced Splunk Engineer to join their fast-paced Cyber Security team within their fast-paced division.
The Splunk Engineer will be responsible for maintaining the overall Splunk architecture and the effectiveness and efficiency of the SIEM. This includes proficiency in managing search heads, indexers, deployment servers and heavy forwarders. To assist the mission of the SOC, a strong understanding of Enterprise Security and SOAR is required. The Splunk Engineer will work closely with other members of the SOC and Cyber security team.
Key Responsibilities:
- Manage Splunk Cloud environment application updates, dashboarding, integrations and health checks;
- Onboard new data/log sources;
- Run queries and searches to inform SOC requests;
- Perform data quality and data model assessments on a periodic basis;
- Maintain Heavy Forwarding logging infrastructure;
- Maintain existing on premise Splunk enterprise and SOAR - including patching, application updates integrations and health checks;
- Assist in playbook and automation maintenance;
- Assist in Use Case development;
- Investigate technologies to assist with vulnerability analysis and remediation efforts;
- Stay up-to-date with the latest security threats, vulnerabilities, and trends in the cybersecurity industry.
Essential criteria
- Bachelor's degree in Cyber Security, Information Technology, or related field. Relevant certifications such as Splunk User, Core, Architect, ES and SOAR are preferred;
- 3+ years of experience in cybersecurity Knowledge of common cybersecurity threats, vulnerabilities, and attack vectors. Experience with Splunk Enterprise Security, Splunk Cloud and Splunk SOAR;
- Experience with case, incident and ticket management Experience with ITSM tools such as ServiceNow and Atlassian;
- Ability to work in a fast-paced, high-pressure environment. Strong problem-solving and analytical skills. Excellent written and verbal communication skills.
For a copy of the full job description, including the application instructions please get in touch with Alison at the Recruitment Hive by clicking the Quick Apply button now. Alternatively, you can reach Alison on (02)6299 1006 to discuss further.
Closing date: 01 March 2024 at 11:00AM
Job ID: AC8939