Splunk Security Architect required to work with a large government department. This is an initial 9 month contract, paying £800 per day, inside IR35, hybrid working (2 days per week in the London office)

An active SC Clearance is an essential requirement for this role, as a minimum you must be willing & eligible to undergo checks.

As a Splunk Security Architect your main responsibilities will be to:

Produce Architecture diagrams, high level and low-level design documents.
Configuration of Splunk with use cases in line with CSOC standards.
Configuration of Splunk as part of onboarding CNI and all other systems.
Configuration of all infrastructure including AWS - EC2, S3 buckets, SQS queues etc.
Attend technical workshops, represent the project at key meetings such as the ADF, TDAs etc.
Represent the project across all technical discussions relating to Splunk, Onboarding, SOAR, Attack Analyzer etc.

Essential:

SIEM Engineering and Architecture skills, specifically in Splunk SaaS.
Full end to end experience of delivery lifecycle experience for improvements to Splunk SaaS.
Experience of defining improvements within Cyber departments, particularly, SIEM improvements within Cyber Security Operations Centre (CSOC) functions that result in an increase in SIEM Maturity Levels.
Good communication, reporting, documentation and presentational skills.
AWS Infrastructure skills for the configuration of EC2 servers, S3 buckets etc.

Desirable:

Public Sector experience.
Experience with wider SIEM Solutions.
Experience with multiple Cyber Security related technologies.

Please apply should you meet the above criteria

Attenti Consulting is acting as an Employment Business in relation to this vacancy.