The Role Experience with Splunk ES involves using it as a SIEM to detect, investigate, and respond to security threats through features like incident investigation, 24/7 threat monitoring, automated response playbooks via Splunk SOAR, AI-powered agentic capabilities, and customizable analytics. Key aspects of this experience include data ingestion and correlation from diverse sources like firewalls and endpoints … building correlation searches, creating and assigning findings, and utilizing a unified workflow with features like response plans and case management to streamline SOC operations Should have experience in Splunk Enterprise skills, ITSI implementation, support of Splunk in a multi-site clustering environment, understanding of CIM and DMA, Red Hat, Windows. Your responsibilities: (Up to 10, Avoid repetition) Candidate must be … Excellent Splunk Enterprise 7/8. * , Splunk SOAR skills Good ITSI implementation skill Understanding of Installation, management, and support of Splunk 7/*. * in a multi-site clustering environment Hands on experience of security data sources on-boarding/parsing. Development of security use cases using Splunk Enterprise with good understanding of CIM and DMA. Practical experience in monitoring More ❯
Splunk Enterprise Security Developer 6 Month contract initially Based: Hybrid/London Rate: £450 - £500 (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We a great opportunity for a Splunk Enterprise … Security Developer to join the team. Experience with Splunk ES involves using it as a SIEM to detect, investigate, and respond to security threats through features like incident investigation, 24/7 threat monitoring, automated response playbooks via Splunk SOAR, AI-powered agentic capabilities, and customizable analytics. Key aspects of this experience include data ingestion and correlation from diverse sources … searches, creating and assigning findings, and utilising a unified workflow with features like response plans and case management to streamline SOC operations The ideal candidate will have experience in Splunk Enterprise skills, ITSI implementation, support of Splunk in a multi-site clustering environment, understanding of CIM and DMA, Red Hat, Windows. Key Skills & Experience: * Candidate must be Excellent Splunk Enterprise More ❯
Splunk Security developer Start: ASAP Duration: 6-12 months Location: London (hybrid ad hoc) Pay: 450-475/day (inside IR35) A confidential client is seeking an experienced Splunk Consultant with strong expertise in Enterprise Security (ES) and SOAR to support and enhance their SIEM capabilities. This role is critical in delivering threat detection, investigation, and response capabilities, leveraging Splunk … s advanced security and automation features. Responsibilities: - Implement and support Splunk Enterprise 7/8 in a multi-site clustered environment - Lead onboarding of security data sources and parsing from diverse platforms (eg Firewalls, endpoints) - Design and develop correlation searches and security use cases aligned to CIM and DMA - Build and manage response playbooks using Splunk SOAR - Implement and support … Splunk ITSI dashboards and services - Monitor, tune, and maintain high-availability Splunk infrastructure - Automate repetitive tasks to improve operational efficiency - Work with Splunk apps and ensure seamless integration with infrastructure - Own delivery of Splunk onboarding projects, from small to enterprise scale - Support SOC operations with unified workflows, case management, and response plans Essential Skills & Experience: - Advanced knowledge of Splunk Enterprise More ❯
Newcastle Upon Tyne, Tyne and Wear, North East, United Kingdom
DXC Technology
on opportunities, and a culture that values continuous improvement. Skills youll have the chance to build or strengthen include: Container platforms and orchestration (Docker, Kubernetes) Monitoring and observability tools (Splunk, Prometheus, Grafana) Infrastructure-as-code and CI/CD pipelines ITIL or service management frameworks Mentoring and technical leadership across the 24x7 function This is more than a jobits a More ❯
on opportunities, and a culture that values continuous improvement. Skills youll have the chance to build or strengthen include: Container platforms and orchestration (Docker, Kubernetes) Monitoring and observability tools (Splunk, Prometheus, Grafana) Infrastructure-as-code and CI/CD pipelines ITIL or service management frameworks Mentoring and technical leadership across the 24x7 function This is more than a jobits a More ❯
Sheffield, Yorkshire, United Kingdom Hybrid / WFH Options
N Consulting Limited
such as messaging and streams. o Building RESTful API Services. o Containerisation, Kubernetes, serverless functions. o Microservices, and distributed tracing. o Enterprise logging, monitoring, and alerting frameworks (e.g., ELK, Splunk, Prometheus, Grafana). o Automation scripting (using scripting languages such as Terraform, Ansible etc.). • Experience of working with Continuous Integration (CI), Continuous Delivery (CD) and continuous testing tools. • Experience More ❯
Birmingham, Staffordshire, United Kingdom Hybrid / WFH Options
N Consulting Limited
such as messaging and streams. o Building RESTful API Services. o Containerisation, Kubernetes, serverless functions. o Microservices, and distributed tracing. o Enterprise logging, monitoring, and alerting frameworks (e.g., ELK, Splunk, Prometheus, Grafana). o Automation scripting (using scripting languages such as Terraform, Ansible etc.). • Experience of working with Continuous Integration (CI), Continuous Delivery (CD) and continuous testing tools. • Experience More ❯
Bachelor's degree in Computer Science, Engineering, or equivalent practical experience Desired Skills Exposure to bare metal provisioning tools (Ironic, MaaS) Hands on use of observability platforms (Grafana, Prometheus, Splunk) Familiarity with public cloud services (AWS, GCP, Azure) Basic understanding of data center networking and security frameworks (NIST, STIGs) OpenStack certification (e.g., Certified OpenStack Administrator) Our Commitment to Diversity, Equity More ❯
Splunk Site Reliability Engineer/Migration Specialist - Fixed Term Contract 6-12 Months Job Summary: The Splunk SRE/Migration Specialist is responsible for leading and executing the migration of data, dashboards, alerts, and configurations from Splunk systems to Elasticsearch. This role involves deep technical expertise in Splunk architecture, data ingestion, and observability tools, along with strong project management and … stakeholder communication skills. Key Responsibilities: Migration Develop and execute a comprehensive migration plan from Splunk to Elasticsearch (ELK Stack). Coordinating with Elastic teams to implement alerting and monitoring using Kibana and Elasticsearch Watcher or third-party tools. Assess existing Splunk configurations, including dashboards, alerts, saved searches, data models and recreate in Kibana. Incident Response Ensure the smooth functioning of … Splunk platform across BT maintaining the Splunk’s infrastructure in Production & Non-Production environments. To support Splunk SRE & Application teams in investigating incidents following established procedures. Upgrades: Keep the Splunk components to the latest version applicable and carry out the necessary pre & post upgrade checks accordingly. Change Requests : Prepare the Change template and documentation for any Change Requests to be More ❯
the provisioning, teardown, and configuration of test environments, integrating them with the CI/CD pipeline. Technical skills Expertise in tooling: Proficiency with monitoring and logging tools (e.g., Prometheus, Splunk, Grafana), CI/CD platforms (e.g., Jenkins, GitLab CI), and configuration management tools (e.g., Ansible, Terraform). Cloud infrastructure knowledge: Deep understanding of cloud platforms like AWS, including experience with More ❯
on-call rotation Qualifications 3-5 years in IT security, ideally in SOC/NOC environments Relevant certifications preferred: ISC2 CISSP, GIAC, SC-200, IBM QRadar Certified Specialist, Splunk Admin/Power User, Chronicle Security Engineer Proficiency in Microsoft Office (Excel, Word) This is a career-defining opportunity to shape the future of cyber defence within a consultancy that values More ❯
siteminder), CA federation, CA directory , Oracle DSEE/ODU, Oracle database, LDAP, IIS 7.x, Jboss and webservers such as apache and iplanet webserver. CHEF, IBM WebSphere application server, Inspec, Splunk, CA Wily. Sound knowledge in Identity and access management tools, IBM Security/Tivoli Access manager, IBM Security/Tivoli directory server, RSA access manager, RSA entitlement server, Active directory More ❯
siteminder), CA federation, CA directory , Oracle DSEE/ODU, Oracle database, LDAP, IIS 7.x, Jboss and webservers such as apache and iplanet webserver. CHEF, IBM WebSphere application server, Inspec, Splunk, CA Wily. Sound knowledge in Identity and access management tools, IBM Security/Tivoli Access manager, IBM Security/Tivoli directory server, RSA access manager, RSA entitlement server, Active directory More ❯
tools (Snyk, Trivy, Checkov, SonarQube) into automated workflows Manage authentication, access control, and secrets using Vault, AWS Secrets Manager, OAuth2.0, and Zero Trust principles Monitor environments with ELK Stack, Splunk, and Prometheus to ensure visibility, auditing, and compliance Collaborate with engineering, operations, and security teams to promote DevSecOps best practices Key Skills & Experience Strong background in cloud platforms, particularly AWS More ❯
tools (Snyk, Trivy, Checkov, SonarQube) into automated workflows Manage authentication, access control, and secrets using Vault, AWS Secrets Manager, OAuth2.0, and Zero Trust principles Monitor environments with ELK Stack, Splunk, and Prometheus to ensure visibility, auditing, and compliance Collaborate with engineering, operations, and security teams to promote DevSecOps best practices Key Skills & Experience Strong background in cloud platforms, particularly AWS More ❯
tools (Snyk, Trivy, Checkov, SonarQube) into automated workflows Manage authentication, access control, and secrets using Vault, AWS Secrets Manager, OAuth2.0, and Zero Trust principles Monitor environments with ELK Stack, Splunk, and Prometheus to ensure visibility, auditing, and compliance Collaborate with engineering, operations, and security teams to promote DevSecOps best practices Key Skills & Experience Strong background in cloud platforms, particularly AWS More ❯
tools (Snyk, Trivy, Checkov, SonarQube) into automated workflows Manage authentication, access control, and secrets using Vault, AWS Secrets Manager, OAuth2.0, and Zero Trust principles Monitor environments with ELK Stack, Splunk, and Prometheus to ensure visibility, auditing, and compliance Collaborate with engineering, operations, and security teams to promote DevSecOps best practices Key Skills & Experience Strong background in cloud platforms, particularly AWS More ❯
london (city of london), south east england, united kingdom
Damia Group
tools (Snyk, Trivy, Checkov, SonarQube) into automated workflows Manage authentication, access control, and secrets using Vault, AWS Secrets Manager, OAuth2.0, and Zero Trust principles Monitor environments with ELK Stack, Splunk, and Prometheus to ensure visibility, auditing, and compliance Collaborate with engineering, operations, and security teams to promote DevSecOps best practices Key Skills & Experience Strong background in cloud platforms, particularly AWS More ❯
technical leadership Knowledge of cloud platforms (AWS/GCP/Azure) and DevOps practices (CI/CD, Docker, Kubernetes, infrastructure-as-code) Familiarity with monitoring tools (Prometheus, Grafana, ELK, Splunk) Strong incident management skills and operational mindset Excellent communication skills for both internal leadership and client-facing situations Interview process: Initial interview with Head of Engineering Technical and practical test More ❯
technical leadership Knowledge of cloud platforms (AWS/GCP/Azure) and DevOps practices (CI/CD, Docker, Kubernetes, infrastructure-as-code) Familiarity with monitoring tools (Prometheus, Grafana, ELK, Splunk) Strong incident management skills and operational mindset Excellent communication skills for both internal leadership and client-facing situations Interview process: Initial interview with Head of Engineering Technical and practical test More ❯
