Splunk Security Architect
Posted 3 days ago by Digital Skills Ltd
£725 Per day
Inside
Hybrid
London/Remote, UK
Summary: The Splunk Security Architect role involves leading the architecture and configuration of Splunk SaaS for a 9-month contract, requiring active SC clearance. The position is hybrid, with two days per week onsite in London, and focuses on enhancing SIEM maturity within the CSOC. This hands-on, senior-level role includes collaboration with AWS infrastructure and representation at key technical meetings.
Key Responsibilities:
- Produce architecture diagrams, as well as high-level and low-level design documentation
- Configure Splunk use cases in line with CSOC standards
- Onboard systems to Splunk, including CNI and other infrastructure
- Configure related AWS infrastructure components (EC2, S3, SQS, etc.)
- Attend technical workshops and represent the project at key forums (ADF, TDAs, etc.)
- Act as the technical lead across all Splunk-related discussions including SOAR and Attack Analyzer
Key Skills:
- Active SC Clearance
- Proven expertise in SIEM engineering and architecture, specifically in Splunk SaaS
- Full life cycle experience of delivering improvements to Splunk SaaS platforms
- Demonstrable experience improving SIEM maturity within Cyber Security Operations Centres (CSOC)
- Strong documentation, communication, and presentation skills
- Experience with AWS infrastructure, particularly EC2, S3 buckets, and SQS
Salary (Rate): £725 per day
City: London
Country: UK
Working Arrangements: hybrid
IR35 Status: inside IR35
Seniority Level: Senior
Industry: IT
Splunk Security Architect
Hybrid - 2 days per week onsite in London
9-month contract
Up to £725 per day - Inside IR35
Must hold active SC clearance
Digital Skills are seeking an experienced Splunk Security Architect for an initial 9 month contract. You'll be leading on the architecture and configuration of Splunk SaaS, designing both high - and low-level documentation, and driving SIEM maturity within the CSOC. This is a hands-on, senior-level role where you'll work closely with AWS infrastructure and represent the project at key technical meetings and workshops.
Key Responsibilities:
- Produce architecture diagrams, as well as high-level and low-level design documentation
- Configure Splunk use cases in line with CSOC standards
- Onboard systems to Splunk, including CNI and other infrastructure
- Configure related AWS infrastructure components (EC2, S3, SQS, etc.)
- Attend technical workshops and represent the project at key forums (ADF, TDAs, etc.)
- Act as the technical lead across all Splunk-related discussions including SOAR and Attack Analyzer
Essential Skills & Experience:
- Active SC Clearance
- Proven expertise in SIEM engineering and architecture, specifically in Splunk SaaS
- Full life cycle experience of delivering improvements to Splunk SaaS platforms
- Demonstrable experience improving SIEM maturity within Cyber Security Operations Centres (CSOC)
- Strong documentation, communication, and presentation skills
- Experience with AWS infrastructure, particularly EC2, S3 buckets, and SQS
Desirable:
- Previous public sector experience
- Familiarity with wider SIEM solutions
- Exposure to a range of cyber security technologies
If you're a Splunk expert with strong AWS knowledge and ready to hit the ground running on a critical government project - apply now!