Cyber Data Engineer
A great opportunity for a Cyber Data Engineer to be part of global team, responsible for delivering security analytics platforms for leading investment bank.
Their key stakeholders are cyber teams including security response, investigations and insider threat and will help maintain their platforms.
Role Profile
Onboarding new data sources with appropriate field extractions
Developing automation tools that integrate with in-house developed configuration management frameworks and APIs
Providing consultancy to internal clients and stakeholders
Identifying and implementing tuning to improve performance
Working as a top-level escalation point to perform complex troubleshoots, working with other infrastructure teams to resolve issues
Required Skills
Prior experience deploying and managing large-scale data analytics platforms – ElasticSearch (preferred) or Splunk
Experience with Cloud integration with a major Cloud Service Provider like GCP, Azure or AWS
Infrastructure automation and integration experience, ideally using Python and Ansible
A solid understanding of Operating Systems and Networking concepts: Linux/Unix system administration, and encryption.
Good understanding of software version control, deployment & build tools using DevOps SDLC practices (Git, Jenkins, Jira)
Strong analytical and troubleshooting skills
Excellent verbal & written communication skills
Appreciation of Agile methodologies, specifically Kanban
Desired Skills
Administrator or architect level certifications in Splunk or Elasticsearch
Data engineering and configuration experience inc. writing and testing field extractions using regular expressions
Familiarity with cybersecurity concepts, event types, and monitoring requirements.