3 of 3 Splunk Jobs in the City of London

years in SOC operations, incident response, threat analysis, or similar defensive security roles. Preferred Certifications: GCIA, GCIH, CompTIA CySA+, Microsoft SC‐200, Splunk Power User (or equivalent). Technical Expertise: Strong analytical mindset with deep knowledge of SIEM/EDR tooling. Understanding of adversary behaviour, malware characteristics, and incident‐handling ...

generally helping to recover from any technical issues. You will also be directly involved in monitoring and observability, using tools like Geneos, Grafana and Splunk, helping to create an environment where issues are picked up and resolved as quickly as possible, with the long-term aim of minimum impact ...

Strategy: Lead the deployment, policy configuration, and maintenance of our CrowdStrike Falcon platform. SIEM Mastery: Collaborate with our SOC partner to architect and optimize Splunk dashboards, alerts, and data models. Incident Response: Act as the technical escalation point for high-priority incidents, utilizing EDR and SIEM tools for rapid containment. … Automation & Hunting: Develop SOAR workflows to improve response times and proactively hunt for undetected malicious activity. Upskilling: Directly train the existing team in CrowdStrike, Splunk, and advanced security analysis. Your Profile We are seeking a candidate who brings at least 5+ years of experience in a dedicated Cyber Security Engineering ...