Splunk Security Architect

Splunk Security Architect required to work with a large government department. This is an initial 9 month contract, paying £800 per day, inside IR35, hybrid working (2 days per week in the London office)

An active SC Clearance is an essential requirement for this role, as a minimum you must be willing & eligible to undergo checks.

As a Splunk Security Architect your main responsibilities will be to:

• Produce Architecture diagrams, high level and low-level design documents.
• Configuration of Splunk with use cases in line with CSOC standards.
• Configuration of Splunk as part of onboarding CNI and all other systems.
• Configuration of all infrastructure including AWS - EC2, S3 buckets, SQS queues etc.
• Attend technical workshops, represent the project at key meetings such as the ADF, TDAs etc.
• Represent the project across all technical discussions relating to Splunk, Onboarding, SOAR, Attack Analyzer etc.

Essential:

• Splunk SOAR
• SIEM Engineering and Architecture skills, specifically in Splunk SaaS.
• Full end to end experience of delivery life cycle experience for improvements to Splunk SaaS.
• Experience of defining improvements within Cyber departments, particularly, SIEM improvements within Cyber Security Operations Centre (CSOC) functions that result in an increase in SIEM Maturity Levels.
• Good communication, reporting, documentation and presentational skills.
• AWS Infrastructure skills for the configuration of EC2 Servers, S3 buckets etc.

Desirable:

• Public Sector experience.
• Experience with wider SIEM Solutions.
• Experience with multiple Cyber Security related technologies.

Please apply should you meet the above criteria.

Attenti Consulting is acting as an Employment Business in relation to this vacancy.