1 to 25 of 29 Permanent Splunk Jobs in the South East

Bash). Experience with infrastructure-as-code tooling (Terraform, Ansible). Nice-to-Have Containerization (Docker/Kubernetes/EKS) in production. Monitoring and observability tools (Prometheus, Grafana, ELK, Splunk). Experience managing vendor relationships or external cloud providers. Why Youll Love This Job Work in a fast-paced, cutting-edge crypto environment. Small, flat, collaborative team your impact will More ❯

Desirable Skills Oracle Cloud Infrastructure (OCI) Certified Architect/Professional. Familiarity with Oracle Integration Cloud (OIC) and API Gateway configurations. Experience with monitoring and alerting tools (OCI Monitoring, Grafana, Splunk). Exposure to other major cloud platforms (AWS, Azure). More ❯

Certified Architect/Professional. Oracle Fusion Cloud certifications (ERP, HCM, SCM). Familiarity with Oracle Integration Cloud (OIC), API Gateway, REST APIs. Experience with monitoring tools (OCI Monitoring, Grafana, Splunk). Exposure to other cloud platforms (AWS, Azure, GCP). Benefits Salary: £60,000 - £70,000 (dependent on experience) plus bonus & travel allowance Enhanced holiday pay Pension Life Assurance Income More ❯

opportunity to work with enterprise-scale clients in a fast-paced, shift-based environment. You’ll be part of a collaborative team using cutting-edge technologies like Microsoft Sentinel, Splunk, and MISP Threat Sharing to protect critical infrastructure. Key Responsibilities: Monitor and analyse security alerts and events, conduct initial investigations, and escalate complex incidents. Manage SOC incident queues and support More ❯

Security+, CEH, OSCP, CISSP, CCSP, Azure/AWS security certifications. Skills & Competencies Strong knowledge of network security (TCP/IP, VPNs, DNS, firewalls). Experience with SIEM tools (e.g., Splunk, Sentinel, QRadar) and EDR platforms. Familiarity with scripting or automation (PowerShell, Python, Bash). Understanding of secure cloud architecture and Zero Trust principles. Ability to analyze complex technical issues and More ❯

defence environment Strong understanding of attack methodologies such as MITRE ATT&CK and the Cyber Kill Chain Hands on experience with SIEM and EDR tools including Microsoft Sentinel, Defender, Splunk or CrowdStrike Experience with triage, containment and incident response Solid understanding of networks, Windows and Linux systems and cloud security across M365, Azure and AWS Excellent communication skills and a More ❯

Apache NiFi, Apache Airflow etc · Good knowledge of stream and batch processing solutions like Apache Flink, Apache Kafka/· Good knowledge of log management, monitoring, and analytics solutions like Splunk, Elastic Stack, New Relic etc Given that this is just a short snapshot of the role we encourage you to apply even if you don't meet all the requirements More ❯

on leadership role where you’ll oversee security monitoring, incident response, and continuous improvement of SOC operations. You’ll work with cutting-edge technologies and frameworks, including Microsoft Sentinel, Splunk, and the MITRE ATT&CK framework, while mentoring and developing your team. Key Responsibilities: Lead and manage a team of SOC Analysts across shift operations. Monitor, triage, and investigate security More ❯

progression over time Ideal Candidate Profile Holds a 2:1 degree or higher in a STEM discipline Familiar with data and analytical tools such as Excel, SQL, Python, Azure, Splunk, or Wireshark Demonstrates strong problem-solving ability and a logical, analytical mindset Possesses excellent communication, organisation, and stakeholder management skills Shows adaptability, curiosity, and a genuine interest in emerging technologies More ❯

Ansible and Terraform. Understanding of datacentre power and cooling requirements. Familiarity with secure environments and regulations (JSP 440, JSP 604, SCIDA). Experience with monitoring tools like SCOM and Splunk Enterprise. If youre interested in this role but not sure if your skills and experience are exactly what were looking for, please do apply, wed love to hear from you More ❯

Security Platform Engineer/DevSecOps Engineer to build a security platform. Essential Skills: Strong experience with Kubernetes Linux (Bash scripting) Strong knowledge of SecDevOps Kubernetes deployments Infrastructure as Code Splunk platform Ideal to have: Windows - (Windows admin) Familiarity with SecOps tooling, log aggregators, edr's etc DV Cleared Security Platform Engineer/DevSecOps Engineer - 3 months+ £500-550pd Outside More ❯

client onboarding and configuration alignment. Mentor junior engineers and analysts. You’ll bring: 3–5 years’ experience in SOC or security engineering. Strong knowledge of platforms such as Sentinel, Splunk, Defender, or Elastic. Scripting/automation ability (PowerShell, KQL, Python, etc.). Understanding of Azure/AWS cloud and network fundamentals. Desirable: Experience with SOAR tools or Infrastructure-as-Code More ❯

hands-on architecture role focused on designing and deploying monitoring, patching, and automation systems across complex Windows and Linux environments. Key Responsibilities: Design and integrate enterprise management tooling: Zabbix, Splunk, Elastic Stack, ServiceNow, Microsoft System Centre Suite Architect monitoring, patching, and automation systems in secure, SC/DV-cleared environments Produce high-quality HLDs, LLDs, and formal technical documentation Collaborate More ❯

Help coach and upskill junior analysts. You should bring: 2–4 years’ experience in a SOC, CSIRT, or cyber defence environment. Solid knowledge of SIEM and EDR platforms (Sentinel, Splunk, Defender, CrowdStrike, etc.). Understanding of MITRE ATT&CK and network/cloud security principles. Strong analytical and communication skills. Bonus points for: Scripting or automation experience (KQL, PowerShell, Python More ❯

Help coach and upskill junior analysts. You should bring: 2–4 years’ experience in a SOC, CSIRT, or cyber defence environment. Solid knowledge of SIEM and EDR platforms (Sentinel, Splunk, Defender, CrowdStrike, etc.). Understanding of MITRE ATT&CK and network/cloud security principles. Strong analytical and communication skills. Bonus points for: Scripting or automation experience (KQL, PowerShell, Python More ❯

Working with stakeholders to analyse requirements, negotiate and bring consensus in bids and delivery projects Knowledge and experience of Enterprise management toolsets Including but not limited to - Zabbix, Elastic, Splunk, Microsoft System Centre Suite, Service Now * Working with business IT infrastructures and the tools required to manage them efficiently, particularly monitoring, patching and automation systems for Windows and Linux. * Working More ❯

Working with stakeholders to analyse requirements, negotiate and bring consensus in bids and delivery projects Knowledge and experience of Enterprise management toolsets Including but not limited to - Zabbix, Elastic, Splunk, Microsoft System Centre Suite, Service Now • Working with business IT infrastructures and the tools required to manage them efficiently, particularly monitoring, patching and automation systems for Windows and Linux. • Working More ❯

in monitoring technologies e.g. PRTG, Nagios. DESIRABLES Understanding of cyber security capabilities and their integrations to networks infrastructure. Existing knowledge of/aptitude to learn Darktrace Antigena and Respond, Splunk ES or Log Rhythm tools. Strong ability to interpret complex information via use of packet capture in order to identify malicious traffic in detail, revealing attacker behaviours like C2, exploitation More ❯

cyber security experience , preferably in an MSP, Enterprise SOC, or consultancy. Hands-on experience with Microsoft Sentinel, Defender, Purview, and XDR . Broad SIEM capability: ideally Microsoft Sentinel or Splunk —and able to go beyond dashboards to build detections, correlations, and meaningful insights. Experience centralising log sources and onboarding new tools and data feeds into a SIEM/SOAR platform. More ❯

utilities, or other project-driven industries. Exposure to cloud-native integration (APIs, microservices, event-driven architectures). Familiarity with monitoring and logging tools used for integrations (e.g. App Insights, Splunk, ELK, etc.). French language skills and/or experience working with Francophone or North African clients. Prior experience working alongside Enterprise Architecture teams and within ARB/design authority More ❯

in people, platforms and innovation • Shape and enhance the SOC’s technical foundations, influencing how detection and response evolves • Work with cutting edge tools across Microsoft, Elastic, Palo Alto, Splunk and other leading technologies • Hybrid working, flexible hours and a culture built on trust, growth and inclusion • Paid training and certification pathways with clear routes into consultancy or leadership What … ll Bring • 3 to 5 years of experience in a SOC, security engineering or cyber operations environment • Hands on experience with SIEM or EDR platforms such as Microsoft Sentinel, Splunk, Defender, CrowdStrike or Elastic • Proven ability to build and tune detection rules, dashboards and automation playbooks • Knowledge of scripting or automation using KQL, PowerShell, Python or similar • Familiarity with log … system and identity security fundamentals • Analytical mindset and passion for problem solving and continuous improvement Desirable Experience • Experience with SOAR platforms such as Microsoft Sentinel Automation, Cortex XSOAR or Splunk SOAR • Knowledge of MITRE ATT&CK mapping and detection engineering frameworks • Experience using Infrastructure as Code such as Terraform, Bicep or ARM templates • Integration experience with ServiceNow or ITSM tools More ❯

standards. Required Experience/Skills: 5 years’ experience in a SOC, security engineering, or cyber operations role. Strong hands-on experience with SIEM or EDR platforms (e.g., Microsoft Sentinel, Splunk, Defender, CrowdStrike, Elastic). Expertise in building and tuning detection rules, dashboards, and automation playbooks. Proficiency in scripting or automation (KQL, PowerShell, Python, or similar). Knowledge of log management … Solid understanding of network, system, and identity security fundamentals. Excellent problem-solving skills and a passion for continuous improvement. Experience with SOAR platforms (e.g., Microsoft Sentinel Automation, Cortex XSOAR, Splunk SOAR). Knowledge of MITRE ATT&CK mapping and detection engineering frameworks. Infrastructure-as-Code experience (Terraform, Bicep, or ARM templates). Exposure to threat hunting, vulnerability management, or integrations More ❯

showcase your proficiency in a busy Security Operations Center with a technology-oriented attitude and the capacity to assume control. From a technical perspective we are using Microsoft Sentinel, Splunk and MISP Threat sharing so any knowledge of these technologies would be a substantial benefit. Role based on site in our Farnborough office and is shift work. 2 x 6am … scripting such as Python, Perl, Bash, PowerShell, C++. CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications. Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar. If you are interested in this role but not sure if your skills and experience are exactly what we’re looking for, please do apply More ❯

of Compromise (IOCs) Examine firewall, web, database, and other log sources to identify evidence of malicious activity Investigate data breaches leveraging forensics tools including Encase, FTK, X-Ways, SIFT, Splunk, and custom Crypsis investigation tools to determine source of compromises and malicious activity that occurred in client environments Manage incident response engagements to scope work, guide clients through forensic investigations … including scoping, interfacing with the client, and have executed on a technical front Proficient with host-based forensics and data breach response Experienced with EnCase, FTK, X-Ways, SIFT, Splunk, Redline, Volatility, WireShark, TCPDump, and open source forensic tools Incident response consulting experience required Identified ability to grow into a valuable contributor to the practice and, specifically Have an external More ❯

Our Cyber team look after some complicated and compelling areas within Aero, Defence and Security. If you can lead from the front, work with a large and complex Defence account and have proven SOC experience. We have a lot to More ❯