Job Requisition ID: 36504
1. Analyze, Visualize, Protect – Elevate Cybersecurity with Splunk
2. Unlock the Power of Data – Join Us as a Security Splunk Engineer
3. CulturalFlex to observe your cultural and religious days of significance
About the role
We are looking for an experienced and highly skilled Senior Splunk Engineer to join our Security Operations Centre (SOC) at the managerial level. This role is pivotal in enhancing our security monitoring and incident response capabilities through the effective use of Splunk. The ideal candidate will have extensive experience in cybersecurity and a deep understanding of Splunk’s ecosystem, including its integration with other security tools. You will be working as part of a wider engineering team that manages multiple security tools across client environments.
About the team
A Splunk Engineer will be a part of the SOC team and will play a key role in utilizing the Splunk platform to manage, analyze, and optimize security data for enhanced visibility and defence. Here’s an overview of their main responsibilities:
Key Responsibilities
4. Splunk Management : Oversee the design, implementation, and maintenance of Splunk infrastructure.
5. Security Monitoring : Develop and optimise Splunk searches, alerts, and dashboards to enhance security monitoring.
6. Incident Response : Collaborate with SOC analysts to investigate and respond to security incidents using Splunk.
7. Data Integration : Integrate various data sources into Splunk and 3rd party integration to feed alerts from Splunk to provide comprehensive security visibility.
8. Performance Tuning : Ensure the performance and scalability of Splunk deployments and data pipeline optimizations.
9. Team Leadership : Mentor and guide junior engineers and analysts within the SOC.
10. Stakeholder Collaboration : Work closely with other teams and stakeholders to understand their needs and deliver effective Splunk solutions.
11. Reporting and Documentation : Maintain detailed documentation and reporting on all Splunk-related activities.
Required Skills
12. Extensive Splunk Experience : Proven experience with Splunk Enterprise, including architecture, deployment, and administration. Enterprise Security [Splunk SIEM] experience is desirable.
13. Security Knowledge : Deep understanding of cybersecurity principles, threat detection, and incident response. Knowledge of frameworks such as MITRE.
14. Search Processing Language (SPL) : Proficient in writing complex SPL queries, reports, and dashboards.
15. Data Onboarding : Experience with data onboarding, normalisation, and parsing within Splunk.
16. Problem-Solving Skills : Strong analytical and problem-solving abilities.
17. Performance Optimisation : Experience in tuning and optimising Splunk performance.
18. Communication Skills : Excellent verbal and written communication skills for interacting with technical and non-technical stakeholders.
19. Project Management : Ability to manage multiple projects concurrently with a high level of organisation.
20. Team Collaboration : Proven ability to work effectively in a team and lead initiatives.
Desirable Skills
21. Certifications : Relevant certifications such as Splunk Certified Architect, CISSP, or CEH.
22. SOAR Integration : Familiarity with integrating Splunk with SOAR platforms (e.g., Phantom, Palo Alto XSOAR).
23. Cloud Environments : Experience with deploying and managing Splunk in cloud environments (e.g., AWS, Azure).
24. Machine Learning : Understanding of machine learning techniques and their application in security analytics.
25. Scripting Skills : Proficiency in scripting languages (e.g., Python, PowerShell, Shell) for automation tasks.
Qualifications
26. Education : Bachelor’s degree in Computer Science, Information Technology, or a related field. Advanced degrees are a plus.
27. Experience : Minimum 5-7 years of relevant experience in Splunk, with at least 2 years focused on security.
Why Deloitte
At Deloitte, we focus our energy on interesting and impactful work. We’re always learning, innovating, and setting the standard; making a positive difference to our clients and our society. We putcoaching at the heart of what we do, helping our people grow their careers in any direction – whether it be up, moving into something new, or even moving across the world.
We embrace diversity, equity, and inclusion. We have a diverse collection of people from different backgrounds, with different experiences, gender identities, abilities and thinking styles. What binds us together is a shared commitment to value everyone’s perspective and to cultivate inclusion; so that our work environment is a safe space we can all belong.
We prioritise flexibility and choice. At Deloitte, you get trust on Day 1. We know our people get their best work done when they’re in control of where and how they work, designing their work week around their client, team and personal commitments.
We help you live and work well. To support your personal and professional life, we offer a range of, including retail discounts, wellbeing leave, paid volunteering days, twelve flexible working options, market-leading parental leave and return to work support package.