Cyber Data Engineer
A great opportunity for a Cyber Data Engineer to be part of global team, responsible for delivering security analytics platforms for leading investment bank.
Their key stakeholders are cyber teams including security response, investigations and insider threat and will help maintain their platforms.
Role Profile
* Onboarding new data sources with appropriate field extractions
* Developing automation tools that integrate with in-house developed configuration management frameworks and APIs
* Providing consultancy to internal clients and stakeholders
* Identifying and implementing tuning to improve performance
* Working as a top-level escalation point to perform complex troubleshoots, working with other infrastructure teams to resolve issues
Required Skills
* Prior experience deploying and managing large-scale data analytics platforms – ElasticSearch (preferred) or Splunk
* Experience with Cloud integration with a major Cloud Service Provider like GCP, Azure or AWS
* Infrastructure automation and integration experience, ideally using Python and Ansible
* A solid understanding of Operating Systems and Networking concepts: Linux/Unix system administration, HTTP and encryption.
* Good understanding of software version control, deployment & build tools using DevOps SDLC practices (Git, Jenkins, Jira)
* Strong analytical and troubleshooting skills
* Excellent verbal & written communication skills
* Appreciation of Agile methodologies, specifically Kanban
Desired Skills
* Administrator or architect level certifications in Splunk or Elasticsearch
* Data engineering and configuration experience inc. writing and testing field extractions using regular expressions
* Familiarity with cybersecurity concepts, event types, and monitoring requirements.