Splunk Enterprise Security Consultant | 1074 | Infopulse
Back

Splunk Enterprise Security Consultant

Infopulse Poland is inviting a talented professional to join our growing team as an Splunk Enterprice Security Consultant for our customer, a modern Nordic bank that creates new digital solutions.

Areas of Responsibility

  • Collaborate with the Cyber Defence Centre to support the enhancement and optimization of the Splunk Enterprise Security App implementation within the organization
  • Provide expertise and guidance in the following areas:
    • data model ingestion, architecture, and adherence to best practices;
    • implementation of risk-based alerting strategies;
    • creation of custom event-based correlation searches to enhance threat detection capabilities;
    • continuous improvement of true positive detections while minimizing false positives;
    • integration and utilization of Splunk-curated detections;
    • development and refinement of threat intelligence workflows;
    • integration of threat intelligence feeds and Splunk Enterprise Security with other security tools such as Threat Intelligence Platforms (TIP), Security Orchestration, Automation, and Response (SOAR), etc;
    • optimization of security workflows to streamline incident response and mitigation processes
  • Contribute to a culture of continuous improvement, innovation, and collaboration within the Cyber Defence Centre to effectively combat cyber threats and protect the bank and its customers

Qualifications

  • Minimum of 3 years of demonstrated professional experience in administering, designing, or leveraging the Splunk Enterprise Security app for efficient detection, alerting, and security workflows
  • Certifications such as Splunk Enterprise Security Certified Admin or Splunk Certified Cybersecurity Defense Analyst are highly desirable
  • Highly skilled in SPL queries, dashboards, alerts and various Splunk knowledge objects
  • Previous experience with integrating Splunk with other security platforms and tools, including Threat Intelligence Platforms and Security Orchestration, Automation, and Response (SOAR) systems
  • Excellent written and verbal communication skills, with fluency in English

Personal skills

  • Ability to work both independently and collaboratively within a team environment
  • Demonstrated openness and adaptability, coupled with a natural respect towards privacy and confidentiality
  • Comfortable operating in a fast-paced, priority-driven environment where stress may occasionally be encountered

Your contact for this vacancy is:

Olha Hurska photo
Olha Hurska
HR Manager

Send us your CV and we will get back to you.

Please add details to your request

If you wish, your application will be considered for other open positions at Infopulse. Data will not be used for any other purpose and will be deleted after 12 months from your latest job application date. *

Please enter the correct data

Thank you!

Your CV has been received. Our specialists will contact you if your skills meet the requirements of the position.