Senior Splunk Engineer
3 George Constantinescu,, Upground building, 5th floor (entrance A) District 2, Bucharest, BUCURESTI, 020339, Romania
2 zile în urmă

Driving Infinite Possibilities Within A Diversified, Global Organization

The future is what we make it.

When you join Honeywell, you become a member of our global team of thinkers, innovators, dreamers and doers who make the things that make the future.

That means changing the way we fly, fueling jets in an eco-friendly way, keeping buildings smart and safe and even making it possible to breathe on Mars.

Working at Honeywell isn’t just about developing cool things. That’s why all our employees enjoy access to dynamic career opportunities across different fields and industries.

Are you ready to help us make the future?

We have an opportunity for a OT SOC Senior SIEM Architect (Senior Splunk Engineer)in our Honeywell Connected Enterprise (HCE) department in Bucharest.

This position will be a part of the Industrial Cyber-Security team and will participate in delivering and developing cyber security services for a wide range of industrial global customers.

The position will have a direct reporting relationship to the Global Security Operation Center Manager and Incident Response Lead and work as part of a global managed services team.

The position requires very good cyber security knowledge, excellent analytical skills, and proficient handling of specific tools such as SIEMs and Security Orchestration, Automation and Response platforms.

A successful candidate would be able to deploy and maintain our SIEM and SOAR technology.

Responsibilities :

  • Support day-to-day operation of a highly available distributed multi-clustered multi-tenant Splunk deployment;
  • Support onboarding and maintenance processes of a wide variety of data sources to include various OS, appliance, and application logs;
  • Support troubleshooting and remediation of issues as they arise with data ingestion;
  • Coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring activities;
  • Administering our Security Orchestration, Automation and Response (SOAR) platform;
  • Perform SIEM architecture assessments, design reviews and come up with areas of improvements.
  • Qualifications :

  • Bachelor’s degree in a computer related field such as Computer Science, Information Technology, or other relevant fields
  • At least 3 years of experience performing Splunk administration
  • Understanding of Splunk Deployment Methodology and best practices for planning,
  • Data collection and sizing for a distributed deployment
  • Able to manage and troubleshoot a standard distributed deployment with indexer and search head clustering
  • Experience with Splunk deployment and implementation
  • Other Nice to Have Certifications :

  • Red Hat Certified System Administrator
  • GCIH or other similar certifications
  • Certifications : Splunk Enterprise Certified Admin / Architect
  • Additional Qualifications :

  • Ability to write documentation and summaries.
  • Mentoring and coaching.
  • Experience working in a client facing Cyber SOC environment.
  • What We Value :

  • Knowledge of Operating Systems and system administration (Windows, Linux) including good command line skills
  • Background in Incident / Threat Detection and Response
  • Experience with data onboarding and ensuring appropriate data parsing
  • Experience on Linux admin, shell scripting, python scripting
  • Experience with McAfee SIEM solution.
  • 1 years’ experience to automate tasks and integrate systems with Python
  • Experience with SOAR platforms
  • Strong diagnostic and analytical skills including problem solving, trouble shooting, management of priorities and self-direction to resolve complex issues.
  • Effective written and verbal skill to enable strong communication capabilities.
  • Benefits :

  • Medical plan provided by Omniasig;
  • Budget for flexible benefit scheme which can be used for travel, sports, dental scheme, and others;
  • Transportation budget and fuel cards;
  • Business Travel Accident Insurance;
  • Voluntary defined contributory pension plan;
  • Meal allowance;
  • Paid vacation and time off;
  • Honeywell employees are provided Christmas and Children vouchers, as well different family aids.
  • If this is your dream role, then we'd love to hear from you.

    We are an equal opportunity employer and value diversity at our company. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

    We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment.

    Please contact us to request accommodation.

    Raportați această lucrare

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Email-ul meu
    Făcând clic pe "Continuă", acord nevoo consimțământ de a procesa datele mele și de a-mi trimite alerte prin e-mail, așa cum este detaliat în policyApplicația de confidențialitate a lui neuvoo. Pot să-mi retrag consimțământul sau să mă dezabonez în orice moment.