Splunk Enterprise Security Developer

Splunk Enterprise Security Developer
6 Month contract initially
Based: Hybrid/London
Rate: £450 - £500 (via Umbrella company)

We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We a great opportunity for a Splunk Enterprise Security Developer to join the team.
Experience with Splunk ES involves using it as a SIEM to detect, investigate, and respond to security threats through features like incident investigation, 24/7 threat monitoring, automated response playbooks via Splunk SOAR, AI-powered agentic capabilities, and customizable analytics. Key aspects of this experience include data ingestion and correlation from diverse sources like Firewalls and endpoints, building correlation searches, creating and assigning findings, and utilising a unified workflow with features like response plans and case management to streamline SOC operations
The ideal candidate will have experience in Splunk Enterprise skills, ITSI implementation, support of Splunk in a multi-site clustering environment, understanding of CIM and DMA, Red Hat, Windows.

Key Skills & Experience:
* Candidate must be Excellent Splunk Enterprise 7/8., Splunk SOAR skills
* Good ITSI implementation skill
* Understanding of Installation, management, and support of Splunk 7/8, in a multi-site clustering environment
* Hands on experience of security data sources on-boarding/parsing.
* Development of security use cases using Splunk Enterprise with good understanding of CIM and DMA.
* Practical experience in monitoring and tuning a Splunk environment to provide a high availability service
* Demonstrate a good knowledge of Splunk apps and the way in which those apps interact with the underlying infrastructure
* Ownership of the deliveries for small to large size Splunk onboarding projects
* Competent in command line and GUI interfaces of Splunk Enterprise/ITSI
* Good understanding of Security models and auditing policies of Splunk
* Ability to automate repetitive Splunk tasks to remove workload from the team
* Demonstrate knowledge of implementing and supporting Splunk as a shared service Red Hat, Windows

This is an excellent opportunity on a great project of work, If you are looking for your next exciting opportunity, apply now for your CV to reach me directly, we will respond as soon as possible.

LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds.

Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.