73 Splunk Development Jobs

Key Responsibilities: Splunk ITSI Implementation: Develop and configure IT Service Intelligence (ITSI) modules, including KPI creation, service trees, and notable event aggregation. SIEM Development: Design, implement, and optimize Splunk SIEM solutions for threat detection, security monitoring, and log analysis. Dashboard & Visualization: Create advanced dashboards, reports, and visualizations using Splunk SPL (Search Processing Language). Data Ingestion & Parsing: Develop data onboarding, parsing, and field extractions from various log sources, including cloud and on-prem infrastructure. Mandatory Key SkillsSIEM,Data Ingestion,data onboarding,Data Visualization,Dashboarding,Splunk*

Key Responsibilities: Splunk ITSI Implementation: Develop and configure IT Service Intelligence (ITSI) modules, including KPI creation, service trees, and notable event aggregation. SIEM Development: Design, implement, and optimize Splunk SIEM solutions for threat detection, security monitoring, and log analysis. Dashboard & Visualization: Create advanced dashboards, reports, and visualizations using Splunk SPL (Search Processing Language). Data Ingestion & Parsing: Develop data onboarding, parsing, and field extractions from various log sources, including cloud and on-prem infrastructure. Mandatory Key SkillsSplunk ITSI Implementation,SIEM Development,data onboarding,Visualization,Splunk*

Key Responsibilities: Splunk ITSI Implementation: Develop and configure IT Service Intelligence (ITSI) modules, including KPI creation, service trees, and notable event aggregation. SIEM Development: Design, implement, and optimize Splunk SIEM solutions for threat detection, security monitoring, and log analysis. Dashboard & Visualization: Create advanced dashboards, reports, and visualizations using Splunk SPL (Search Processing Language). Data Ingestion & Parsing: Develop data onboarding, parsing, and field extractions from various log sources, including cloud and on-prem infrastructure.KeywordsITSI,SIEM,SIEM Development,Splunk SPL,Splunk ITSI Implementation,Splunk*Mandatory Key SkillsITSI,SIEM,SIEM Development,Splunk SPL,Splunk ITSI Implementation,Splunk*

Key Responsibilities:Splunk ITSI Implementation: Develop and configure IT Service Intelligence (ITSI) modules, including KPI creation, service trees, and notable event aggregation.SIEM Development: Design, implement, and optimize Splunk SIEM solutions for threat detection, security monitoring, and log analysis.Dashboard & Visualization: Create advanced dashboards, reports, and visualizations using Splunk SPL (Search Processing Language).Data Ingestion & Parsing: Develop data onboarding, parsing, and field extractions from various log sources, including cloud and on-prem infrastructure.KeywordsDashboard,Data Visualization,Splunk SPL,Data Ingestion,Splunk SIEM solutions,IT Service Intelligence,Splunk ITSI Implementation*Mandatory Key SkillsDashboard,Data Visualization,Splunk SPL,Data Ingestion,Splunk SIEM solutions,IT Service Intelligence,Splunk ITSI Implementation*

Key Responsibilities: Splunk ITSI Implementation: Develop and configure IT Service Intelligence (ITSI) modules, including KPI creation, service trees, and notable event aggregation. SIEM Development: Design, implement, and optimize Splunk SIEM solutions for threat detection, security monitoring, and log analysis. Dashboard & Visualization: Create advanced dashboards, reports, and visualizations using Splunk SPL (Search Processing Language). Data Ingestion & Parsing: Develop data onboarding, parsing, and field extractions from various log sources, including cloud and on-prem infrastructure.KeywordsSIEM,Data Ingestion,data onboarding,Data Visualization,Dashboarding,Splunk*Mandatory Key SkillsSIEM,Data Ingestion,data onboarding,Data Visualization,Dashboarding,Splunk*

Key Responsibilities: Splunk ITSI Implementation: Develop and configure IT Service Intelligence (ITSI) modules, including KPI creation, service trees, and notable event aggregation. SIEM Development: Design, implement, and optimize Splunk SIEM solutions for threat detection, security monitoring, and log analysis. Dashboard & Visualization: Create advanced dashboards, reports, and visualizations using Splunk SPL (Search Processing Language). Data Ingestion & Parsing: Develop data onboarding, parsing, and field extractions from various log sources, including cloud and on-prem infrastructure. Mandatory Key Skills IT Service Intelligence,Data Ingestion,Splunk SPL,Splunk SIEM,SIEM Development,Splunk*

Key Responsibilities: Splunk ITSI Implementation: Develop and configure IT Service Intelligence (ITSI) modules, including KPI creation, service trees, and notable event aggregation. SIEM Development: Design, implement, and optimize Splunk SIEM solutions for threat detection, security monitoring, and log analysis. Dashboard & Visualization: Create advanced dashboards, reports, and visualizations using Splunk SPL (Search Processing Language). Data Ingestion & Parsing: Develop data onboarding, parsing, and field extractions from various log sources, including cloud and on-prem infrastructure. Mandatory Key SkillsIT Service Intelligence,Data Ingestion,Splunk SPL,Splunk SIEM,SIEM Development,Splunk*

Key Responsibilities: Splunk ITSI Implementation: Develop and configure IT Service Intelligence (ITSI) modules, including KPI creation, service trees, and notable event aggregation. SIEM Development: Design, implement, and optimize Splunk SIEM solutions for threat detection, security monitoring, and log analysis. Dashboard & Visualization: Create advanced dashboards, reports, and visualizations using Splunk SPL (Search Processing Language). Data Ingestion & Parsing: Develop data onboarding, parsing, and field extractions from various log sources, including cloud and on-prem infrastructure. Mandatory Key SkillsITSI,SIEM,SIEM Development,Splunk SPL,Splunk ITSI Implementation,Splunk*

Key Responsibilities: Splunk ITSI Implementation: Develop and configure IT Service Intelligence (ITSI) modules, including KPI creation, service trees, and notable event aggregation. SIEM Development: Design, implement, and optimize Splunk SIEM solutions for threat detection, security monitoring, and log analysis. Dashboard & Visualization: Create advanced dashboards, reports, and visualizations using Splunk SPL (Search Processing Language). Data Ingestion & Parsing: Develop data onboarding, parsing, and field extractions from various log sources, including cloud and on-prem infrastructure. Mandatory Key SkillsSplunk ITSI Implementation,IT Service Intelligence,SIEM Development,Search Processing Language,Data Ingestion,Splunk*

We are looking for a skilled Splunk / Elastic Search Engineer to join our team. In this role, you will be responsible for driving complex Splunk deployments, solving unique customer problems, and enabling advanced security operations in SOC environments. If you are passionate about SIEM, security monitoring, and leveraging Splunk/Elastic to deliver value, this role is for you. Exp :- 5 -8 years Notice Period: Immediate/15 days Location:- Hyderabad Interested candidates can forward their resume to sajida.u@cirruslabs.io

About The Role Project Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : Oracle Utilities Customer to Meter C2M SPL Good to have skills : NA Minimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Developer, you will engage in the design, construction, and configuration of applications tailored to fulfill specific business processes and application requirements. Your typical day will involve collaborating with team members to understand project needs, developing innovative solutions, and ensuring that applications function seamlessly to support organizational goals. You will also participate in testing and troubleshooting to enhance application performance and user experience, contributing to the overall success of the projects you are involved in. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Assist in the documentation of application processes and workflows.- Engage in continuous learning to stay updated with industry trends and technologies. Professional & Technical Skills: - Must To Have Skills: Proficiency in Oracle Utilities Customer to Meter C2M SPL.- Strong analytical and problem-solving skills.- Experience with application development methodologies.- Familiarity with database management and SQL.- Ability to work collaboratively in a team environment. Additional Information:- The candidate should have minimum 2 years of experience in Oracle Utilities Customer to Meter C2M SPL.- This position is based at our Noida office.- A 15 years full time education is required. Qualification 15 years full time education

About The Role This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. About The Role - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers.

About The Role Project Role : Technology Support Engineer Project Role Description : Resolve incidents and problems across multiple business system components and ensure operational stability. Create and implement Requests for Change (RFC) and update knowledge base articles to support effective troubleshooting. Collaborate with vendors and help service management teams with issue analysis and resolution. Must have skills : Splunk Administration Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Technology Support Engineer, you will engage in resolving incidents and problems across various business system components, ensuring operational stability. Your typical day will involve collaborating with different teams, implementing Requests for Change, and updating knowledge base articles to enhance troubleshooting effectiveness. You will also work closely with vendors and service management teams to analyze and resolve issues, contributing to a seamless operational environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions for junior team members to enhance their skills.- Monitor system performance and proactively identify areas for improvement. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration.- Strong understanding of incident management processes.- Experience with system monitoring and performance tuning.- Familiarity with change management practices.- Ability to create and maintain technical documentation. Additional Information:- The candidate should have minimum 5 years of experience in Splunk Administration.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

o Develop and maintain Splunk dashboards, reports, and alerts. o Write complex Splunk Processing Language (SPL) queries to analyze log data. Required Candidate profile o Design and implement data ingestion pipelines. o Ensure the performance and scalability of the Splunk environment.

Greetings !! We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate effectively with customers. Roles & Responsibilities: Splunk Deployment & Administration: Install, configure, and manage Splunk Enterprise and Splunk Cloud. Handle indexers, search heads, forwarders, and clustering. Optimize Splunk performance, storage, and scalability. Security & Splunk Monitoring Solutions: Implement and manage Splunk Enterprise Security (ES), Splunk UBA, and ITSI. Configure correlation searches, threat intelligence feeds, risk-based alerting (RBA), and dashboards. Troubleshoot security-related issues within Splunk. Customer Interaction & Troubleshooting: Engage with customers to understand their requirements and provide technical guidance. Troubleshoot and resolve Splunk-related issues, logs ingestion, parsing, and data onboarding. Splunk Architecture & Implementation: Design, deploy, and optimize Splunk Enterprise and Splunk Cloud environments. Lead end-to-end Splunk implementations, migrations, and upgrades. Manage search head clustering, indexer clustering, and data retention policies. Security & Observability Solutions: Architect and configure Splunk Enterprise Security (ES), Splunk UBA, and ITSI. Implement risk-based alerting (RBA), custom correlation searches, and advanced analytics. Integrate Splunk with SOAR, cloud platforms (AWS, Azure, GCP), and third-party security tools. Team Leadership & Customer Engagement: Lead and mentor a team of Splunk Administrators & Engineers. Interact with customers to gather requirements, design solutions, and conduct workshops etc. Review and improve Splunk use cases, dashboards, and data models. Optimization & Automation: Develop custom scripts (Python, Bash, PowerShell) for automation and orchestration. Tune Splunk performance, search queries, and indexing strategies. Implement best practices for data onboarding, parsing, and CIM compliance. Interested can share their updated resume to gayathri.ramaraj@locuz.com along with the below mentioned details. Current CTC: Expected CTC: Notice Period:

5+ years of experience as a Splunk Backend Engineer, preferably working on Splunk-based projects Strong understanding of software development principles and design patterns (e.g., RESTful APIs, microservices) Proficiency with programming languages such as Java, Python, or C++ Experience with data integration and processing technologies (e.g., Apache Kafka, AWS Lambda) Familiarity with OCSF standards and protocols is a plus Strong problem-solving skills and attention to detail We are seeking an experienced and skilled Senior Splunk Backend Engineer, focusing on implementing Open Cyber Security Schema Format (OCSF) and Common Information Model (CIM) data standards and aliasing implementation in Splunk. Job Summary: As a Senior Splunk Backend Engineer, you will be responsible for designing, developing, testing, and deploying software solutions that implement OCSF data standards and aliasing functionality within the Splunk platform. You will work closely with cross-functional teams to ensure seamless integration of new features and functionalities into our existing architecture. Responsibilities: o Design, develop, test, and deploy software solutions for implementing OCSF and CIM data standards in Splunk o Collaborate with product management and other engineering teams to understand requirements and design solutions that meet business needs o Implement aliasing functionality within the Splunk platform to enable seamless integration of new data sources and formats o Participate in code reviews, ensuring adherence to coding standards, best practices, and company guidelines o Troubleshoot issues related to OCSF and CIM implementation. o Develop and maintain technical documentation for new features and functionalities

This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers.

Cloud Observability Administrator JOB_DESCRIPTION.SHARE.HTML CAROUSEL_PARAGRAPH JOB_DESCRIPTION.SHARE.HTML Pune, India India Enterprise IT - 22685 about our diversity, equity, and inclusion efforts and the networks ZS supports to assist our ZSers in cultivating community spaces, obtaining the resources they need to thrive, and sharing the messages they are passionate about. Cloud Observability Administrator ZS is looking for a Cloud Observability Administrator to join our team in Pune. As a Cloud Observability Administrator, you will be working on configuration of various Observability tools and create solutions to address business problems across multiple client engagements. You will leverage information from requirements-gathering phase and utilize past experience to design a flexible and scalable solution; Collaborate with other team members (involved in the requirements gathering, testing, roll-out and operations phases) to ensure seamless transitions. What Youll Do: Deploying, managing, and operating scalable, highly available, and fault tolerant Splunk architecture. Onboarding various kinds of log sources like Windows/Linux/Firewalls/Network into Splunk. Developing alerts, dashboards and reports in Splunk. Writing complex SPL queries. Managing and administering a distributed Splunk architecture. Very good knowledge on configuration files used in Splunk for data ingestion and field extraction. Perform regular upgrades of Splunk and relevant Apps/add-ons. Possess a comprehensive understanding of AWS infrastructure, including EC2, EKS, VPC, CloudTrail, Lambda etc. Automation of manual tasks using Shell/PowerShell scripting. Knowledge of Python scripting is a plus. Good knowledge of Linux commands to manage administration of servers. What Youll Bring: 1+ years of experience in Splunk Development & Administration, Bachelor's Degree in CS, EE, or related discipline Strong analytic, problem solving, and programming ability 1-1.5 years of relevant consulting-industry experience working on medium-large scale technology solution delivery engagements; Strong verbal, written and team presentation communication skills Strong verbal and written communication skills with ability to articulate results and issues to internal and client teams Proven ability to work creatively and analytically in a problem-solving environment Ability to work within a virtual global team environment and contribute to the overall timely delivery of multiple projects Knowledge on Observability tools such as Cribl, Datadog, Pagerduty is a plus. Knowledge on AWS Prometheus and Grafana is a plus. Knowledge on APM concepts is a plus. Knowledge on Linux/Python scripting is a plus. Splunk Certification is a plus. Perks & Benefits ZS offers a comprehensive total rewards package including health and well-being, financial planning, annual leave, personal growth and professional development. Our robust skills development programs, multiple career progression options and internal mobility paths and collaborative culture empowers you to thrive as an individual and global team member. We are committed to giving our employees a flexible and connected way of working. A flexible and connected ZS allows us to combine work from home and on-site presence at clients/ZS offices for the majority of our week. The magic of ZS culture and innovation thrives in both planned and spontaneous face-to-face connections. Travel Travel is a requirement at ZS for client facing ZSers; business needs of your project and client are the priority. While some projects may be local, all client-facing ZSers should be prepared to travel as needed. Travel provides opportunities to strengthen client relationships, gain diverse experiences, and enhance professional growth by working in different environments and cultures. Considering applying? At ZS, we're building a diverse and inclusive company where people bring their passions to inspire life-changing impact and deliver better outcomes for all. We are most interested in finding the best candidate for the job and recognize the value that candidates with all backgrounds, including non-traditional ones, bring. If you are interested in joining us, we encourage you to apply even if you don't meet 100% of the requirements listed above. ZS is an equal opportunity employer and is committed to providing equal employment and advancement opportunities without regard to any class protected by applicable law. To Complete Your Application Candidates must possess or be able to obtain work authorization for their intended country of employment.An on-line application, including a full set of transcripts (official or unofficial), is required to be considered. NO AGENCY CALLS, PLEASE. Find Out More At

5+ years of hands-on experience working with Splunk development. 2) Need candidates who can write Splunk Queries and can create dashboards from those queries. 3)Expertise in Splunk Enterprise including large-scale developments, deployments, clustering, and distributed search setups. 4)) Candidate should know medium to complex SQL queries and knows how to modify. 5)Develop dashboards and reports: Use SPL (Search Processing Language) to create dashboards and reports that visualize data and key business metrics 6)) Write and optimize search queries: Write and optimize complex search queries to extract and analyze data from various sources. 7)) Proficiency in SPL (Search Processing Language)for querying, reporting, and analysis. Strong experience with data ingestion, data transformation, and optimizing Splunk indexers for performance. 8) Proven experience in building and managing custom Splunk apps and dashboards, with an understanding of Splunk base app packaging. 9) Familiarity with integrating external data sources, APIs, and custom data inputs into Splunk. Knowledge of data normalization and working with CIM (Common Information Model). 10) Experience with scripting (Python, Shell, etc.) and automation for Splunk processes. 11) Splunk Certifications(e.g., Splunk Core Certified Power User, Splunk Certified Developer) are highly desirable. 12) Familiarity with Splunk ITSI and machine learning with Splunk's Machine Learning Toolkit (MLTK). 13) Knowledge of networking and security protocols, SNMP traps, syslog, etc. 14) Knowledge with AIOps and performance monitoring using Splunk for predictive analysis. Mandatory Skills 1. Need candidates who can write Splunk Queries and can create dashboards from those queries. 2.SPL (Search Processing Language),data ingestion 3.Candidate should know medium to complex SQL queries and knows how to modify.

Experience: 7 Years overall experience in IT, 5 Yrs experience in Splunk with optimization and cost management focus. JD: Proven experience as a Splunk Engineer with a focus on Splunk Cost Management, Performance Bottlenecks, search and dashboard optimization. Optimize search queries and ensure efficient use of resources within the Splunk environment Strong understanding of Splunk architecture, search processing language (SPL), and data models Proficiency in system monitoring and triaging with monitoring tools Proficiency in scripting languages such as Python. Excellent problem-solving and analytical skills. Excellent Communication skills and ability to handle multiple teams / stakeholders. Roles & Responsibilities: List down all Splunk Dashboards across all apps Perform clean-up of unused ones Optimize Splunk Queries for heavy usage dashboards Splunk Index level access to be tracked and understand the usage cost (Users vs Cost) Revisit all standard queries and publish optimized Splunk queries Educate and groom team on these practices All this to be done for 80-100 Splunk indexes and direct 240+ RTS team Please also note that Build users also access Splunk Questionnaire: Development experience (years ) - Dashboards experience (years ) - Classic: ; Studio: Advanced SPL usage ( years ) - Volumes, trend graphs/stats ( years ) - Alerts, reports, schedules (years ) - Base searches implementation (years ) - Summary index implementation (years ) - Various optimization techniques (in words )- Splunk Cloud experience(years) - Splunk license monitoring for Splunk cloud (years ) - High SVC consumption areas identification ( years ) -

Role & responsibilities We are looking for an experienced Splunk Developer/Engineer to support our enterprise logging, monitoring, and alerting platform using Splunk. The ideal candidate will have hands-on experience designing, configuring, and managing Splunk environments and dashboards for data visualization and incident management. Key Responsibilities: Develop, maintain, and manage dashboards, data models, and alerts in Splunk. Integrate logs from various systems (cloud, on-prem, hybrid) into Splunk for centralized visibility. Create Splunk queries using SPL (Search Processing Language) to extract actionable insights. Onboard new data sources and work with application owners to define log formats and parsing logic. Develop automation and alerting for critical events and performance anomalies. Collaborate with Security, DevOps, and Infrastructure teams for proactive monitoring and root cause analysis. Implement best practices for Splunk architecture, indexing, and data retention. Required Skills: 7+ years of experience with Splunk (Enterprise and/or Cloud). Strong knowledge of SPL and data visualization techniques. Experience integrating Splunk with platforms such as AWS, Azure, Linux, Windows, or network devices. Ability to troubleshoot performance issues and optimize searches and dashboards. Knowledge of onboarding logs using UF/HF and configuring parsing rules. Familiarity with scripting (Python, Shell) is a plus. Experience with Splunk apps (ITSI, ES, DB Connect, etc.) is an added advantage. Good to Have: Splunk certifications (e.g., Splunk Core Certified Power User, Admin, Architect). Familiarity with ITIL/ITSM frameworks. Knowledge of security frameworks (SIEM/UEBA) if working in a security-focused role. Experience with CI/CD and DevOps tools integration.

Your role This position is responsible for administering the Splunk platforms for enterprise Security Information and Event Management (SIEM). The role involves working with asset owners to ensure the timely and efficient collection of computer security events and logs for the purpose of detecting and responding to information security incidents. Maintain all components of a distributed SPLUNK infrastructure including indexer clusters, search head clusters, and deployment servers. Provide overall management of the SPLUNK platform. Standardize SPLUNK forwarder deployment, configuration, and maintenance across Unix and Windows platforms. Troubleshoot SPLUNK server and forwarder problems and issues. Assist internal users in designing and maintaining production-quality dashboards. Monitor the SPLUNK infrastructure for capacity planning. Implement change requests and engineering tasks. Lead technical discussions in customer governance calls. Participate in technical audits. Identify opportunities for automation, standardization, and stabilization. Prepare/update/review run books, SOPs, and knowledge articles. Plan, prepare, and execute change processes and implementations. Perform OS-level performance monitoring and troubleshooting. Monitor and troubleshoot application and database layers (e.g., Apache, Tomcat, MySQL). Administer and maintain a 24/7 highly available Splunk environment. Work closely with clients, technicians, and managerial staff. Experience with Databricks, Kafka, and NiFi is an added advantage. Your profile Splunk Administrator with 4 to 8 years experience Dashboards, reports creation and Monitoring Experience with Splunk Phantom as well, would be given preference Work location Bengaluru,Mumbai,Pune & Hyderabad What Youll Love About Working Here You can shape yourcareerwith us. We offer a range of career paths and internal opportunities within Capgemini group. You will also get personalized career guidance from our leaders. You will get comprehensive wellness benefits including health checks, telemedicine, insurance with top-ups, elder care, partner coverage or new parent support via flexible work. At Capgemini, you can work oncutting-edge projectsin tech and engineering with industry leaders or createsolutionsto overcome societal and environmental challenges.

Meet the Team The Security Operations Center (SOC) Security Investigator is responsible for investigating and responding to security issues within customer environments. Cisco Managed Security Services is looking for a Security Investigator who can analyze security events generated from network analytics, endpoint protection, and other security suites to determine the severity and outcome of any threats detected. The Security Investigator will provide remediation actions to the client based on the impact of these threats up to and including taking proactive responses for high priority events. You must be able to accurately identify and prioritize events, translate technical solutions for an audience of varying technical knowledge, and make customer impacting recommendations with the goal of ensuring customer satisfaction. l> Your Impact Take ownership of and conduct in-depth investigations into security events Document security investigations in a clear and concise manner Ensure that incoming client requests are addressed and worked in a timely manner Assist clients to address security incidents in an expedited manner Proactively hunt for suspicious or malicious activity not detected via automated alerts Work as a member of a team to prioritize incoming automated security events based on the impact and urgency of the events Provide knowledge sharing with the rest of the team Utilize threat intelligence to enrich and qualify security events Maintain knowledge of new tactics, techniques and procedures (TTP) in customer verticals Identify processes and procedures that are candidates for automation Minimum Qualifications Relevant degree in a technical field (Computer Science / Computer Engineering / Cybersecurity / Computer Networking) or related discipline with 9+ years equivalent experience Familiarity with incident handling, incident response frameworks, guidelines, and best practices (NIST, ISO, etc.) Passion for IT Security and staying up-to-date with current TTP's Experience with threat intelligence and open source threat intelligence Knowledge of enterprise network and computer environments and the common protocols and applications in these environments Preferred Qualifications Suggested certifications (OSCP,Sec+, CCIE - Security , CySA+,CCNA CyberOps, GCIH, GCIA, GCFA, GCFE, CEH) Working knowledge of Splunk admin and play book tuning Familiarity with MITRE ATT&CK framework Experience with a scripting/automation language (Python, BASH)

Project description We have a strong partnership with the leading bank in Australia across Treasury, Core Banking, and Technical Services offerings. Our purpose is to shape a world where people and communities thrive. That's why we strive to create a balanced, sustainable economy in which everyone can take part and build a better life. By helping people make the most of what they have, we transform ideas, hard work, and ambition into reality. Career development means different things to different people. It may simply mean developing a skill, broadening your experience by moving sideways, or stretching yourself by moving to a different business. Responsibilities Splunk PEEP requires strong expertise in developing queries, dashboards, and Python scripting. Providing innovative thought process and challenging the status quo whilst understanding the regulatory requirements of the Bank, including a focus on automation and simplification. Comfortable building trusted and productive relationships across the organization with a strong ability to influence and succeed through collaboration. Proven ability to deliver in a complex and fast-paced environment. Competence in effective communication across a range of audiences. Ability to identify continuous improvement opportunities and propose solutions to simplify and automate existing processes. A strong work ethic with a focus on excellence and attention to detail. Must be self-initiating and self-managing. An appreciation and motivation to learn of all aspects of compliance and operational risk. Knowledge of LINUX and Python Skills Must have Overall 5 to 7 years of experience as a Splunk Developer and 4+ years in Python development Experience in UI development with strong knowledge of Splunk UI, SPL, Splunk Configuration, Splunk Integration, Splunk Setup, Splunk Upgrade Strong development experience in Python 3 Experience with Windows server environment Knowledge of LINUX and shell scripting Nice to have Good exposure to CI/CD Bamboo, git, etc. Experience with CI/CD/test automation toolkits. Strong analytical skills to diagnose problem statements, perform root cause analysis, propose and implement technical solutions, and test changes. Ability to work in a fast-paced Agile environment. Understanding of Financial Markets domain and financial Markets data such as Orders, Trades, Market data, etc. Knowledge of Regulatory & Compliance and trade surveillance functions is an advantage. Since Migration from Splunk 8 to 9, creating forwarders, Index and configuration, splunk programming languages knowledge in Python scripts for migarating from Version 2 to 3.

Splunk ITSI Admin with solid experience in Splunk Administration. The successful candidate will manage the configuration, deployment, and maintenance of Splunk IT Service Intelligence (ITSI), as well as SME experience on Splunk ITSI .