Cyber Security System Engineer

Delivery mode: Onsite

Working hours: Half or full time

Project Description

Splunk Senior Consultancy

In order to ensure that the availability and performance of the Splunk infrastructure is guaranteed and managed according to best practices, there is a requirement for infrastructure support from technical Splunk experts (Cyber Security System Engineer Senior). More specifically, tasks related to the Splunk infrastructure include the following:

• Upgrading the infrastructure (introduction of new components in the Splunk infrastructure as well as the upgrade of the existing infrastructure).
• Architecture related tasks.
• Troubleshoot and pin-point issues that might arise in the infrastructure and that have an impact on the performance and/or the availability of the Splunk platform (platform downtime, broken searches, storage issues, etc.). Remediate aforementioned issues in a time-efficient manner and according to Splunk best practices.
• Document all performed activities (troubleshooting timeline, updates, upgrades, changes, …) in the EEAS content management system.

Daily operations of the Splunk infrastructure (active monitoring, minor patching, take first remediation actions in case of issue) are out of scope.

The Splunk infrastructure expert would also require a good understanding of Splunk architecture in place at EEAS and the data sources available, in order to assist with the following activity:

• Integrate new data sources into the EEAS Splunk infrastructure.
• On request by security, the network or the operation team, create custom reports, dashboards or alerts.
• Develop new Apps and add-on for EEAS specific needs.

In addition to those operational activities on the current Splunk platform the consultant will be directly involved in the migration to a new platform (design, architecture, implementation and documentation).

Job Requirements

• Specific mandatory requirements:

  Mandatory certifications are required for this position:

  • Splunk Enterprise Certified Admin
  • Splunk Enterprise Security Certified Admin
  • Splunk Enterprise Certified Architect

  General Docker knowledge and experience running Splunk on Docker infrastructure are required.

  Experience developing Splunk apps is required.

  Experience with GIT is mandatory.

The following documents / procedures will be requested to successfully complete the hiring process :

• A copy of your university degree(s)
• A copy of your criminal record
• Security Clearance Procedure

WHO ARE WE?

CRI Group belongs to VASS GROUP as of November 2021 (https://vasscompany.com/en/).

VASS is a leading digital solutions group of companies headquartered in Madrid, Spain, present in 25 countries in Europe, the Americas and Asia with more than 4,300 professionals.

VASS helps large companies in their digital transformation process, developing and executing the most innovative and scalable projects, from strategy to operations.

All our growth comes from our talented people, passion for innovation, and a constant search for improvement, always the VASS way: “Complex made simple”.