Splunk Consultant

I am currently recruiting for an IT organisation that provide professional services and products within the Defence sector. They are looking for a Splunk Consultant to join them on an initial 3 month contract.

3 months + (OutsideIR35)

£500 - £550 per day

Remote working with occasional travel to Manchester or London

SC clearance required

Responsibilities/Experience needed

  • Splunk ES Admin Certification; or 3+ years experience administrating Enterprise Security across multiple organisations
  • Supporting the customer to enable Enterprise Security (Splunk Cloud), focusing primarily on the customer's Cloud/SaaS data sources
  • Support the identification of use-cases, working along-side data-stakeholders and following the customer's agreed onboarding patterns for data-integrations
  • Support the customer's experience of Splunk Enterprise Security, demonstrating the value of Splunk Enterprise Security to organisational stakeholders
  • Providing advice and guidance to the platform owners on best practices for Enterprise Security, enabling:
    • Correlation searches;
    • Risk-based alerting;
    • Data-onboarding;
    • Assets and identities feed