Splunk Engineer
دوام كامل
في Tata Consultancy Services
في
Ireland
نُشرت يوم April 22, 2024
تفاصيل الوظيفة
Join our global team to transform what's next. Immerse yourself in an atmosphere of innovative solutions.
Role: Splunk Engineer - SME Job Type: Permanent (Hybrid) Location: Letterkenny, Donegal (2/3 days on site per week) Ready to utilise your skills in designing, implementing and optimising Splunk solutions? Are you passionate about learning more within Cyber Security to enhance security capabilities and grow your career? We have an exciting role for you as a Splunk Engineer! Careers at TCS: It means more TCS is a purpose-led transformation company, built on belief. We do not just help businesses to transform through technology. We support them in making a meaningful difference to the people and communities they serve - our clients include some of the biggest brands in the UK and worldwide. For you, it means more to make an impact that matters, through challenging projects which demand ambitious innovation and thought leadership.- Gain access to endlesslearning opportunities.
- Be part of an exciting team where you will be challenged every day.
- Grow your career, while being exposed to new technologies.
- Onboard new log sources into Splunk.
- Develop notable events, visualisations, forms, reports, alerts, as well as Splunk Apps, Technology Add-ons, and normalizing data sources to the Common Information Model (CIM).
- Custom use-case development, fine tuning in Splunk Enterprise Security.
- Recognise and onboard new data sources into Splunk, analysing the data for anomalies and trends, and building dashboards highlighting the key trends of the data.
- Upgrade Splunk apps required by Splunk ES upgrades.
- Configure notable event actions, action menus and Adaptive Responses.
- Data onboarding and data ingestion normalisation recommendations.
- Provide overall engineering and design support for a distributed Splunk environment consisting of heavy forwarders, indexers, and search head servers, spanning security, performance, and operational roles.
- Provide Splunk Enterprise Security administration and management.
- Manage enterprise SIEM infrastructure to improve data ingestion processes, including architectural work.
- Bachelor's Degree / Diploma or equivalent experience in a relevant area of study with a preference for Information Security, Computer Science or Computer Engineering.
- Excellent English written and verbal skills.
- In-depth experience in using customer focused Splunk Enterprise Security SIEM engineering background.
- Ability to create, manage, and support automation solutions for Splunk deployment and orchestration in on-site and cloud environments.
- Experience with Splunk Enterprise Security or integration with other Security Information and Event Management (SIEM) platforms.
- Proficiency in data on-boarding activities including routing, parsing, and normalizing events to the Splunk Common Information Model (CIM).
- Proficiency in onboarding data using Splunk developed add-ons for Windows, Linux, and common third-party devices and applications
- Strong knowledge of security concepts, networks, risk procedures, security patterns, authentication technologies and security attacks.
- Ability to perform maintenance and optimisation of existing clustered Splunk deployments.
- Experience in creating dashboards to monitor the traffic volumes, response times, errors, and warnings across various data centres.
- Proficiency in developing documentation with processes and procedures.
- SPLUNK Certification.
- CompTIA Security+ Certificate.
- Certified Ethical Hacker (CEH).
- GIAC Security Essentials Certification (GSEC).
Apply safely
To stay safe in your job search, information on common scams and to get free expert advice, we recommend that you visit SAFERjobs, a non-profit, joint industry and law enforcement organization working to combat job scams.