2 of 2 Permanent Splunk Jobs in Bristol

part of a team or independently Additional desirable skills and experience Knowledge and practical experience of configuring SIEM and data analytics platforms (e.g. Splunk, Elastic Stack) Knowledge and practical experience of using and configuring malware analysis tools (e.g. dynamic sandboxes) Knowledge and experience analysing software and firmware threats targeting Windows ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...