Job Description
EXPERIENCE AND EDUCATION:
Essential Qualifications/Experience:
· In depth knowledge of Splunk products in scope: Splunk Enterprise, Splunk IT Service Intelligence, Splunk Enterprise Security
· Hands-on experience (at least 2 years) with the configuration, build and deployment of Splunk solutions
· In depth knowledge of endpoint security (hardening, patching, vulnerability management)
· In depth knowledge of network security
· General cybersecurity knowledge
· Disciplined execution of procedures (compliance to NATO security policies & directives)
· Experience with Splunk as an observability solution is a bonus
DUTIES/ROLE:
· Install and configure Splunk components
· Perform tests
· Support to NATO security accreditation process and related activities
· Perform tests and implement remediation when needed
· Write documentation (detailed design, test cases, test report, operational handbooks,….)
· Perform deployment to production and assist to hypercare
· Provide advice to the Solution Architecture team
· Define Tier 2 systems onboarding strategy (via ACPV Enclaves)
· Create enclave design template per enclave type
· Create and document detailed design for Splunk components as part ACPV enclaves (105 enclaves to be designed & deployed)
· Splunk component set up per Enclave
· Integration with Splunk core components