Splunk Administrator

Splunk Administrator
£500 per day
Start Date: ASAP
Durations: 6 months
Hybrid – 1/2 days in the office in Bracknell, Berkshire
  
This is a great opportunity to work for a well established and iconic supermarket brand for an initial 6 month contract but with a likely extension.
  
This role will focus on bringing additional Splunk expertise into a security engineering team developing and maintaining an in-house Splunk based SIEM, including the ingestion and support of new log sources
  
Skillset
  
Must have –  

• Splunk Enterprise Certified Admin
• Splunk Administration Experience

  Desired –  

• Developing and maintaining a clustered Splunk Enterprise installation
• Data source onboarding from legacy systems, bespoke in-house developed tools, and integrating with cloud solutions
• Maintain, upgrade, and troubleshoot Splunk servers, clusters, and management systems
• Install, upgrade, and maintain required Splunk applications and apps/add-ons
• Provide performance and licence tuning for systems and troubleshoot
• Splunk components
• Develop, create, deploy, and manage custom Splunk monitors, alerts, reports, and dashboards
• Monitor Splunk for cluster status, health status, and other issues, and resolve as needed
• Work closely with the other teams that form the Security Operations Centre
• (SOC) to assist with developing SIEM detection use cases and security investigations
• Assist with requirement gathering and documentation during new project onboarding process  

If this Splunk Administrator role is of interest to you please click apply below

Contact Details:

nick.trussler@cvmpeople.com
01264 326 315