09 Oct
Tacnique
United Arab Emirates
The SOC Senior Engineer, Splunk, is a critical role responsible for delivering SIEM management services, particularly focusing on Splunk, within the Security Operations Center (SOC). Working closely with the SOC Principal Engineer, SIEM, this role encompasses onboarding new log sources, enhancing and optimizing telemetry, ensuring system updates, resolving issues, and maintaining SIEM performance according to best practices. Reporting to the Director SOC Engineering & Architecture, the SOC Senior Engineer, Splunk, is a professional with a solid foundation in SOC operations.
Responsibilities:
1. Deliver Splunk SIEM management services within the SOC environment.
2. Collaborate with the SOC Principal Engineer, SIEM,
in onboarding new log sources to the SIEM platform.
3. Maintain and govern SOC critical log sources, ensuring their proper functionality and integration with Splunk SIEM.
4. Detect and resolve issues related to log sources and SIEM performance.
Qualifications:
Skills:
1. Profound knowledge and hands-on experience with Splunk SIEM and other related technologies like CRIBL.
2. Strong understanding of cloud and network technologies, essential for efficient log source onboarding.
3. Proven technical capabilities in a complex, fast-paced SOC environment.
4. Ability to diagnose and troubleshoot log source issues related to cloud and network infrastructures.
5. Strong understanding of SOC operations, cybersecurity principles, and best practices.
6. Excellent problem-solving skills and the ability to make decisions under pressure.
7. Ability to collaborate effectively with a variety of team members, including interfacing with customers to resolve issues.
8. High proficiency in written and verbal communication.
Certifications:
1. Certified Information Systems Security Professional (CISSP), preferred.
#J-18808-Ljbffr
▶️ C Senior Engineer - SOC Splunk Cyber Security United Arab Emirates, Remote Office
🖊️ Tacnique
📍 United Arab Emirates