Splunk Enterprise Security Developer
Posted Today by 1758094277
£500 Per day
Inside
Hybrid
London
Summary: The role of Splunk Enterprise Security Developer involves working with a leading organization to enhance security operations through the use of Splunk ES as a SIEM. The position requires expertise in incident investigation, threat monitoring, and automated response capabilities. The ideal candidate will have experience in managing and supporting Splunk in a multi-site environment, as well as developing security use cases. This is a 6-month hybrid contract based in London, offering a competitive daily rate.
Key Responsibilities:
- Utilize Splunk ES for detecting, investigating, and responding to security threats.
- Manage data ingestion and correlation from various sources.
- Build correlation searches and create findings.
- Utilize a unified workflow for SOC operations.
- Support Splunk in a multi-site clustering environment.
- Develop security use cases and automate repetitive tasks.
- Monitor and tune the Splunk environment for high availability.
- Demonstrate knowledge of Splunk apps and their infrastructure interactions.
- Oversee deliveries for Splunk onboarding projects.
Key Skills:
- Excellent skills in Splunk Enterprise 7/8 and Splunk SOAR.
- Good ITSI implementation skills.
- Understanding of installation and management of Splunk in a multi-site environment.
- Hands-on experience with security data sources onboarding and parsing.
- Development of security use cases with knowledge of CIM and DMA.
- Practical experience in monitoring and tuning Splunk environments.
- Competent in command line and GUI interfaces of Splunk Enterprise/ITSI.
- Good understanding of security models and auditing policies of Splunk.
- Ability to automate Splunk tasks to reduce team workload.
Salary (Rate): £500 daily
City: London
Country: United Kingdom
Working Arrangements: hybrid
IR35 Status: inside IR35
Seniority Level: Mid-Level
Industry: IT
Splunk Enterprise Security Developer
6 Month contract initially
Based: Hybrid/London
Rate: £450 - £500 (via Umbrella company)
We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We a great opportunity for a Splunk Enterprise Security Developer to join the team.
Experience with Splunk ES involves using it as a SIEM to detect, investigate, and respond to security threats through features like incident investigation, 24/7 threat monitoring, automated response playbooks via Splunk SOAR, AI-powered agentic capabilities, and customizable analytics. Key aspects of this experience include data ingestion and correlation from diverse sources like firewalls and endpoints, building correlation searches, creating and assigning findings, and utilising a unified workflow with features like response plans and case management to streamline SOC operations
The ideal candidate will have experience in Splunk Enterprise skills, ITSI implementation, support of Splunk in a multi-site clustering environment, understanding of CIM and DMA, Red Hat, Windows.
Key Skills & Experience:
* Candidate must be Excellent Splunk Enterprise 7/8., Splunk SOAR skills
* Good ITSI implementation skill
* Understanding of Installation, management, and support of Splunk 7/8, in a multi-site clustering environment
* Hands on experience of security data sources on-boarding / parsing.
* Development of security use cases using Splunk Enterprise with good understanding of CIM and DMA.
* Practical experience in monitoring and tuning a Splunk environment to provide a high availability service
* Demonstrate a good knowledge of Splunk apps and the way in which those apps interact with the underlying infrastructure
* Ownership of the deliveries for small to large size Splunk onboarding projects
* Competent in command line and GUI interfaces of Splunk Enterprise /ITSI
* Good understanding of Security models and auditing policies of Splunk
* Ability to automate repetitive Splunk tasks to remove workload from the team
* Demonstrate knowledge of implementing and supporting Splunk as a shared service
Red Hat, Windows
This is an excellent opportunity on a great project of work, If you are looking for your next exciting opportunity, apply now for your CV to reach me directly, we will respond as soon as possible.
LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds.
Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.