Splunk Engineer (Outside IR35 & Fully Remote)
Govt. client require an SC cleared Splunk engineer to support on the enhancing/configuration of Splunk within an Oracle environment. This is a hands-on, engineering role configuring, tuning & increasing the ROI within Splunk.
Day Rate: £550-£600pd
IR35 Status: Outside
Duration: 6 Months
Travel: Fully Remote
- Extensive & demonstrable experience working with and tuning Splunk within an Oracle cloud environment.
- Experienced using SIEM platforms and development of use cases. In addition, experience with Splunk core enterprise, enterprise security experience from both an engineering and knowledge management perspective.
- Extensive experience with log aggregation, building use cases, validating false positives, sys log collectors.
- Provide solution support to the implementation of the Splunk SIEM solution in early non-production and production environments.
- Assist the project, SOC and wider teams and help develop Cyber Use Cases e.g. log source onboarding, use case development with incident response playbook development and automation and integration with Service Now and SysNG
- Ensure cyber use cases are successfully tested, with defects remediated through each testing phase in line with test strategy and methodology.
- As part of Use Case transition into live SOC monitoring ensure the Use Case is created in Jira Confluence using a provided template
- Perform user acceptance testing of each use case following an agreed test script, documenting in Jira as to why a step or steps have failed. If so raise a defect ticket in Jira & remediate.
If interested, please apply or message me directly at Antonio.Alfieir@lafosse.com
