Job description
Initial contract of 12 months with 2 x 12 months extension
Based in ACT, Offsite
Requires Baseline security clearance
Who We Are?As experts in the Information Technology recruitment industry, Ressam provides both permanent and temporary personnel assignments. With our experience, extensive industry network, financial transparency, and collaboration with clients we consider ourselves one-of-a-kind IT recruiters when it comes to finding the perfect candidates for you.
Security
Due to client requirements, candidates must be an Australian citizen with active Baseline Security clearance. Applicants residing outside of Australia or non-citizens will not be considered.
What We Are Looking For
Ressam is currently looking to fill a Splunk Engineer role for the Department of Industry, Science and Resources, please apply if the following role interest you.
Splunk Engineer
Overview
The Department of Industry, Science and Resources (DISR) plays a key role in the Australian Government’s agenda to create jobs and build a stronger, more resilient, and competitive economy. The Chief Information Officer Division (CIOD) is an exciting, fast-paced division that drives the digital agenda for the Department. The Cyber Security team within the Digital Strategy & Cyber Security branch is seeking to engage a Splunk Engineer to lead the engineering, administration and tuning of a highly complex Splunk environment.
The Splunk Engineer will be responsible for maintaining the overall Splunk architecture and the effectiveness and efficiency of the SIEM. This includes proficiency in managing search heads, indexers, deployment servers and heavy forwarders. To assist the mission of the SOC, a strong understanding of Enterprise Security and SOAR is required. The Splunk Engineer will work closely with other members of the SOC and Cyber security team. The Splunk engineer should also demonstrate advanced knowledge of Splunk Cloud and the configuration of federated search. The Splunk engineer will engage with end users, external teams and vendors to gather requirements, troubleshoot issues, and provide support for the creation of Splunk search queries and dashboards. The Splunk engineer will require good understanding of ITIL and change processes.
Key Responsibilities:
Manage Splunk Cloud environment application updates, dashboarding, integrations and health checks Onboard new data/log sources Run queries and searches to inform SOC requests Perform data quality and data model assessments on a periodic basis Maintain Heavy Forwarding logging infrastructure Maintain existing on premise Splunk enterprise and SOAR - including patching, application updates integrations and health checks Assist in playbook and automation maintenance Assist in Use Case development Investigate technologies to assist with vulnerability analysis and remediation efforts Stay up-to-date with the latest security threats, vulnerabilities, and trends in the cybersecurity industry Work ArrangementsRemote working may be suitable to support the requirements of this role. The Department also supports flexible working from home arrangements on a case-by-case basis subject to the business needs of the supervising manager and business unit. Please indicate clearly in your response the candidates desired work location if outside ACT/Canberra.
Contact Us
If you are interested in any of these roles, or are a Splunk Engineer that is looking for new opportunities, please reach out to us via email at: **************@ressam.com.au or apply via. For confidential discussion, Call Us: 0423 227 *** or 02 5119 2***