SplunkEnterpriseSecurityDeveloper Location: London,UK(Hybrid2daysonsite) Type: Contract(6months)|Rate:£400/dayInsideIR35|StartDate:ASAP TheRole Weareseekinganexperienced SplunkEnterpriseSecurityDeveloper tojoinaleadingglobalorganisationssecurityteaminLondon.Theroleinvolvesleveraging SplunkES asaSIEMplatformtodetect,investigate,andrespondtosecuritythreats.Youwillworkwith24/7threatmonitoring,incidentinvestigation,automatedresponseplaybooksvia SplunkSOAR ,AI-poweredanalytics,andcustomizabledashboards. KeyResponsibilities Implementandsupport SplunkEnterprise(7/8) and SplunkSOAR forsecuritymonitoringandautomation. Perform ITSIimplementation andconfigurationformonitoringcriticalservices. Install,manage,andsupportSplunkina multi-siteclusteringenvironment. Onboard,parse,andcorrelatesecuritydatafromsourcessuchasfirewalls,endpoints,andapplications. Developsecurityusecases,alerts,dashboards,andreportswithastrongunderstandingof CIM and DMA. Monitor,tune,andmaintainSplunkenvironmentsforhighavailabilityandoptimalperformance. Demonstratestrongknowledgeof Splunkapps andtheirinteractionwiththeunderlyinginfrastructure. OwnthedeliveryofsmalltolargeSplunkonboardingorintegrationprojects. Usecommand-lineandGUIinterfacesofSplunkEnterpriseandITSItoautomaterepetitivetasksandoptimizeworkflows. Applybestpracticesin securitymodels,auditingpolicies ,andsharedserviceimplementationon RedHatandWindows environments. EssentialSkills&Experience Expertin SplunkEnterprise7/8 and SplunkSOAR. Hands-onexperiencewith ITSIimplementation. Knowledgeofinstallation,configuration,andsupportin multi-siteclusteredenvironments. Experienceonboarding,parsing,andcorrelatingsecuritydatasources. Abilitytodevelop securityusecases withstrongCIMandDMAknowledge. PracticalexperiencemonitoringandtuningSplunkfor highavailability. StrongunderstandingofSplunkappsandtheirinteractionwithinfrastructure. Competentwith command-lineandGUIinterfaces ofSplunkEnterprise/ITSI. Understandingof securitymodels,auditingpolicies ,andsharedservicesupport. Familiaritywith RedHatandWindowsenvironments. DesirableSkills&Experience ExperienceautomatingrepetitiveSplunktaskstoreduceworkload. ProvenabilitytomanageSplunkonboardingprojectsfromsmalltolargescale. ExposuretoAI-poweredanalyticsandautomatedincidentresponseworkflows. ExperienceintegratingSplunkwithothersecuritytoolsandSOCworkflows. If you have the relevant experience, please apply with your CV and we will be in touch.