Security Engineer - Splunk

Recorded Future, a leading intelligence company with over 1,000 professionals serving more than 1,900 clients worldwide, is seeking a Security Engineer to join its Enterprise Security team. This role focuses on maintaining and enhancing the security infrastructure, particularly emphasizing the Splunk environment, to ensure the organization's robust defense against security threats.

The Security Engineer will be responsible for deploying, configuring, and maintaining the Splunk environment to effectively manage security threats and risks. Additionally, the role involves collaborating with cross-functional teams to support the configuration and maintenance of other security-centric tools, such as ELK, IAM tools, and DLP technologies. The engineer will also develop dashboards, design data models, and analyze security logs to uphold the security of Recorded Future's enterprise.

Candidates should have over three years of experience with the deployment, configuration, and troubleshooting of SIEM appliances, particularly Splunk. Experience operating within a CSIRT or SOC environment is essential. Proficiency in managing distributed Splunk cluster infrastructure, including components like search heads, indexers, and deployment servers, is required. Strong problem-solving and analytical skills, along with scripting abilities in languages such as Perl, Bash, or Python, are also necessary.

The position is based in London, UK, and offers a full-time, on-site work arrangement. Recorded Future values diversity and inclusion, providing a supportive work environment for all employees. The company offers competitive remuneration and opportunities for professional growth.