Splunk Security Architect

Summary: The Splunk Security Architect role requires an individual with active SC clearance to design and configure Splunk systems in accordance with CSOC standards. The position involves producing architectural documentation, configuring infrastructure including AWS services, and participating in technical discussions and workshops. The ideal candidate will have a strong background in SIEM engineering and architecture, particularly with Splunk SaaS, and experience in enhancing SIEM maturity levels within Cyber Security Operations.

Key Responsibilities:

• Produce architecture diagrams and design documents (high-level and low-level).
• Configure Splunk with use cases in line with CSOC standards.
• Onboard CNI and other systems into Splunk.
• Configure AWS infrastructure including EC2, S3 buckets, and SQS queues.
• Attend technical workshops and represent the project at key meetings.
• Engage in technical discussions related to Splunk, onboarding, SOAR, and Attack Analyzer.

Key Skills:

• SIEM engineering and architecture skills, specifically in Splunk SaaS.
• Full end-to-end delivery lifecycle experience for Splunk SaaS improvements.
• Experience defining improvements in Cyber departments, particularly for SIEM in CSOC.
• Good communication, reporting, documentation, and presentation skills.
• AWS infrastructure skills for configuring EC2 servers and S3 buckets.

Salary (Rate): £800

City: London

Country: United Kingdom

Working Arrangements: undetermined

IR35 Status: undetermined

Seniority Level: undetermined

Industry: IT