5 of 5 Splunk Jobs in the City of London

years in SOC operations, incident response, threat analysis, or similar defensive security roles. Preferred Certifications: GCIA, GCIH, CompTIA CySA+, Microsoft SC‐200, Splunk Power User (or equivalent). Technical Expertise: Strong analytical mindset with deep knowledge of SIEM/EDR tooling. Understanding of adversary behaviour, malware characteristics, and incident‐handling ...

generally helping to recover from any technical issues. You will also be directly involved in monitoring and observability, using tools like Geneos, Grafana and Splunk, helping to create an environment where issues are picked up and resolved as quickly as possible, with the long-term aim of minimum impact ...

Strategy: Lead the deployment, policy configuration, and maintenance of our CrowdStrike Falcon platform. SIEM Mastery: Collaborate with our SOC partner to architect and optimize Splunk dashboards, alerts, and data models. Incident Response: Act as the technical escalation point for high-priority incidents, utilizing EDR and SIEM tools for rapid containment. … Automation & Hunting: Develop SOAR workflows to improve response times and proactively hunt for undetected malicious activity. Upskilling: Directly train the existing team in CrowdStrike, Splunk, and advanced security analysis. Your Profile We are seeking a candidate who brings at least 5+ years of experience in a dedicated Cyber Security Engineering ...

GitLab pipelines Support onboarding of production workloads onto container platforms Ensure platforms meet security, compliance, and audit standards Integrate monitoring/logging tools (e.g. Splunk) Act as escalation point for complex incidents Contribute to architecture, capacity planning, and platform strategy Participate in on-call rota and occasional out-of-hours … building and operating container platforms at scale Solid understanding of automation tools (Ansible, CI/CD, GitLab) Experience with monitoring/logging tools (e.g. Splunk) Knowledge of security hardening and compliance in regulated environments Ability to act as a technical lead/SME without direct people management Strong troubleshooting ...

toolkit includes: 1–2 years of experience in a SOC or related cyber role. Exposure to AI SIEM, XDR or EDR platforms such as Splunk, Microsoft Sentinel or SentinelOne Experience with Microsoft Security platforms and Windows security fundamentals. Familiarity with Linux/Unix-based systems and basic scripting knowledge. Exposure … goals. Commonly supported certifications include Microsoft AZ-500, MS-100, MS-200, MS-300, and MS-401, along with vendor-specific programs such as Splunk, SentinelOne, and Rapid7 certifications. Beyond technical credentials, we also select team members for targeted development opportunities such as Presentation Skills training, mentoring programs, and participation ...