Splunk Sme

Remote India, India

System Administration

BCM Industry

16/12/2024

Req. VR-109474

**Project description**:
About the client: Our client is a UK subsidiary of a global financial house working in multiple markets and asset classes.
About our team: Rapidly expanding group developing and supporting for various client projects.
We are working remotely in the client environment. Currently, the team operates fully in WFH mode.

IT Risk, Security & Control department covers Cyber Security strategy maintenance and tactical planning and operations to provide IT Security protection, governance, risk management and reporting. This includes promoting Head Office Information Security Standards and Procedures (ISSP) requirements and local security requirements. The department supports and monitors security solutions such as virus protection, vulnerability management, compliance monitoring and threat/incident management activities to reduce risk.

**Responsibilities**:
Main Purpose of the Role:
The Cybersecurity Technical resource is responsible for management and delivery on large, strategic and complex cybersecurity projects. The role manages the execution of project/product cybersecurity elements across cross-portfolio programs and services. Executions include working with multiple security, IT and other leadership / stakeholders and a variety of security, IT and engineering technical resources to identify, plan and deliver cybersecurity initiatives. Deliverables include, but are not limited to:
To support the delivery of cyber projects within agreed scope, cost and timescale.

To deliver Splunk solution across multiple regions.

To manage and work independently or as part of a team in delivering complex projects.

Design and implement the Splunk solution including log ingestions from various sources.

Key Responsibilities:
For dual hat only:
Interprete cybersecurity relevant regulatory and other requirements or best practices and translate these to business aligned cybersecurity programme requirements.

Manage the delivery of cybersecurity projects within agreed scope, cost and timescale across Bank and Securities.

Support of the delivery of the cyber portion of allocated Cross Portfolio projects including implementation of cyber projects

The technical resource will be responsible for support and execution of the following deliverables as required: business requirements, technical design and architecture, engagement with other infrastructure teams,

Splunk use cases, alerts, reports development with knowledge of Splunk ES and CIM

**Skills**:
Must have

Skills and Experience:
Functional / Technical Competencies:
Essential

Experience /Knowledge of Splunk use case development covering Windows, Linux, Firewalls, proxy etc.

Knowledge of Splunk Enterprise Security configuration and creation/management of correlation searches.

Knowledge of managing /creation of reports, dashboards and knowledge objects.

Knowledge on various type of data on-boarding in Splunk using DB Connect, various splunk apps/add-ons & syslog-ng and should be compliant with Splunk CIM (Common Information Model)

Infrastructure Knowledge/experience

Experience/Knowledge on SOAR concepts and use case automation development.

Govern and advise on technical direction especially through technical workshops and 1:1 coaching session to ensure alignment to business strategy.

Creation and maintenance of technical guides to convey fact, simply and effectively to both peers and those less experienced.

Should have working knowledge on Linux Operating Systems (Preferably RHEL 7 & 8)

Cyber Security Technology Knowledge/experience

Work Experience:
Essential:
Experience in working on multiple projects with broad scope, ambiguity, and high degree of difficulty

Experience in technology projects such as implementation of Cyber infrastructure replacement etc.

Demonstrable proficiency in a wide range of information IT security technologies and embedded security; at the minimum knowledge must cover key cybersecurity domains such as Identity and Access Management, Incident Management Posessing high level of analytical ability where problems are typically unusual and difficult

Ability to maintain a working knowledge of cybersecurity principles and elements

Understand global program structure, launch plan and timing, and global program ownership

Demonstrable experience of senior stakeholder management and relevant management reporting.

Ability to coach team members through knowledge transfer and constructive feedback

Education / Qualifications:
Essential:
Degree educated and / or equivalent experience.

Nice to have

Personal Requirements:
You are a leader and an expert in delivery of cyberframeworks and associated key solutions

A demonstrable passion for cybersecurity

Excellent communication/leadership/interpersonal skills; results driven and with strong sense of accountability

You are experienced in engaging and persuading teams to accept and participate