Summary: The role of SC Cleared Splunk Security Consultant involves supporting a SOC team in the Defence sector by optimizing the Splunk environment and ensuring its stability. The consultant will also assist in live monitoring and migration activities. This is a 3-month contract position that allows for remote work and requires active SC clearance. The consultant will be responsible for enhancing threat detection capabilities and refining security use cases.

Key Responsibilities:

• Perform a comprehensive health check of the Splunk environment to ensure a stable and scalable architecture for future growth.
• Implement agreed recommendations based on customer priorities and dependencies.
• Assist SOC analysts in tuning and suppressing alerts to optimize threat detection and reduce false positives.
• Refine and map approximately 200 security use cases to enhance monitoring and response capabilities.

Key Skills:

• Active SC Clearance clearance/Sole National is mandatory.
• Splunk Core Certified Consultant with hands-on expertise in deployment and optimization.
• Splunk Enterprise Security Certified Admin with experience in rule tuning and security use case development.
• Strong background in SOC environments, particularly within the Defence sector.

Salary (Rate): £500

City: undetermined

Country: UK

Working Arrangements: remote

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT