Splunk Architect

Job title: Splunk Architect

Location: Remote

Salary: £70k - £80k

Candidates must be willing and eligible to go through SC security clearance

Experience and responsibilities:

  • Splunk ES Admin Certification; or 3+ years' experience administrating Enterprise Security across multiple organisations
  • Supporting the customer to enable Enterprise Security (Splunk Cloud), focusing primarily on the customer's Cloud/SaaS data sources
  • Support the identification of use-cases, working along-side data-stakeholders and following the customer's agreed onboarding patterns for data-integrations
  • Support the customer's experience of Splunk Enterprise Security, demonstrating the value of Splunk Enterprise Security to organisational stakeholders
  • Providing advice and guidance to the platform owners on best practices for Enterprise Security, enabling:
    • Correlation searches.
    • Risk-based alerting.
    • Data-onboarding.
    • Assets and identities feed
  • Working with data-stakeholders, security strategy and within the Security Framework to increase security monitoring capability with tangible outcomes
  • Documentation of use-case delivery, including platform configuration and data source integration methodology

If you are interested in this role or wish to apply please feel free to reply to this advert call me on 01737 821029

Many thanks,