Company : CBSbutler Location : Filton England From : Neuvoo UK
What you’ll be doing - CyberSecurityEngineer – Splunk · Installation & support of Splunk Enterprise Platform · Working with Admin ON Demand / Splunk PS to conclusion of issues within the environment · On-Boarding new data sources and Apps and Add-ons into Splunk · Building/testing log ingestion sources · Development of automation scripts using Python and various toolset API’s · Supporting SIEM and SOAR technologies · Provide ongoing management and administration of cybersecurity solutions · Provide support to projects delivering and implementation of cybersecurity solutions · Where required, integrate with service operations and project delivery to enable quick and compliant change and service stability · Installation & support of security toolset hardware Your skills and experiences - CyberSecurityEngineer – Splunk Essential:
· Knowledge of deploying, maintaining, and configuring the Splunk Enterprise Platform · A strong technical background with a proven experience in a CyberSecurity role · Good understanding of architecture and configurations of large-scale networks (30,000+ devices) and the underlying security technologies · Experience of working with system management toolsets in a technical capacity · Previous experience and exposure to Windows Event Collection/Forwarding (build, configuration, and tuning), Log sources and ingestion, CIM Mapping, RegEx Field Extractions, Syslog + Parsing Desirable:
· Ideally with exposure of VMware, Windows, UNIX, and associated technologies · Trained to Splunk Enterprise Certified Admin level · Relevant Security Certifications are desirable but not essential (CISSP, GIAC (Advanced Certifications) e.g., GCIA, GCIH or GCFA and CompTIA Security + CBSbutler FiltonEngland
