This Job Vacancy has Expired!

SPLUNK ENTERPRISE SECURITY ENGINEER - EINDHOVEN - 6 MONTHS

Global Enterprise Partners

Posted on Dec 23, 2021 by Global Enterprise Partners

Eindhoven, Noord-Brabant, Netherlands
IT
Immediate Start
Annual Salary
Contract/Project

Global Enterprise Partners is currently looking for a Dutch speaking Splunk Enterprise Security engineer for a 6 months project with our client in the Eindhoven area

Role

As a temporary member of the existing Security Engineering team, you will work with other security teams to execute on strategic plans and develop tactical execution methodologies, which improve the "protect, detect, and respond" capabilities of Cyber Defense Center.

We are looking for a team member that has a passion for onboarding new data sources, deploying, tuning, and improving Splunk's UBA security solution to protect our organization, identities and assets.

You will collaborate with our engineers, operations teams, incident responders, and threat Intel value streams, to help them use the capabilities of UBA and achieve success.

Responsibilities

  • Improve Splunk UBA by identifying and integrating new data sources
  • Serve as the senior engineer to build and improve the data normalization process, and optimize workflows
  • Perform data normalization, ingestion into the dedicated data models and mapping data with use cases
  • Supporting the onboarding of data into Splunk via forwarder, scripted inputs, TCP/UDP and modular inputs from different sources
  • Work closely with (senior) engineers, other team members and application owners to identify required data for building/creating pre-defined use cases
  • Design, create, deploy, test, custom ML models using various tools (UBA, MLTK, SMLE) to solve security problems, and potentially spot performance related problems in advance
  • Documentation and reporting along with presentation, teamwork and wide collaboration are among the expected duties and mission of the task order.

Requirements:

  • Extensive experience with Splunk Enterprise Security and Splunk User Behavior Analytics
  • Possess the ability to accurately assess problems and requests from multiple perspectives, analyze approach feasibility, and decide on the most efficient course of action
  • Achieve security engineering's goals/objectives that drive engineering project by taking ownership and delivering results
  • 5 or more years of security experience in one or more of these critical areas: Information Security Technology, Engineering, Operations and Technology Infrastructure
  • Communicate data, facts and analysis regarding operational delivery
  • Excellent written and oral communication skills; strong presentation skills

Nice to Have:

  • Substantial Splunk and/or security certifications: Splunk Enterprise Certified Admin, Architecture or Security, CISSP, etc

Are you interested in this opportunity and do you meet the requirements? Please get in touch with Marco Eindhoven of Global Enterprise Partners on telephone number or mail to (see below).

Reference: 1439997039

Set up alerts to get notified of new vacancies.