Security Specialist with strong Splunk experience

Imagine a future where expertise in information security shapes the protection of critical infrastructure on a global scale.

Join us in this role where you’ll put your technical information security skills to work in a critical infrastructure environment. As one of our dedicated IT security experts in Security Engineering, you’ll protect our company assets from security-related incidents by operating and improving security controls and tools on a global scale.

Welcome to Security Competency Centre
You’ll be part of Cyber Defence Centre IT product line, where you, together with your colleagues, will design, build, and manage the core security stack to support our business units across IT and OT environments. The Cyber Defence Centre is the heart of the technical security team in the company, with experts in both offensive and defensive security. We’re expanding in both numbers and capabilities, as a global team located in multiple countries and delivering across different time zones to ensure the best support.

You’ll play an important role in:

• building, administering and maintaining the Splunk infrastructure and implementing Splunk best practices towards architecture, apps, add-ons, and searches, etc.

• configuring, managing, and optimizing Splunk's Enterprise Security platform used for security monitoring and incident detection and response

• troubleshooting Splunk performance issues, log feeds, field extractions, and search time, etc.

• identifying and updating bad searches or dashboards, and partnering with various security specialists to improve efficiency, effectiveness and performance.

To succeed in the role, you:

• have a strong background in the design, implementation, troubleshooting and support of Splunk, including Indexers, UFs, HFs, Search Heads, dashboard creation, and apps
• have solid experience with Splunk Enterprise Security, including App Configuration, Data Input Configuration, Data Integration & Normalization and deploying apps from deployment server, as well as troubleshooting any related issues.

• have experience in onboarding new data, inputting new information, filtering unwanted data, creating new dashboards, and extracting information through Splunk

• have experience with Linux and Python and the ability to effectively document solutions you have implemented and train colleagues.

Maybe you’ve read the above and can see you have some transferable skills, even though they don’t quite match all the points. If you think you can bring something to the team, we still encourage you to apply.

Shape the future with us
Send your application to us as soon as possible. We’ll be conducting interviews on a continuous basis and reserve the right to take down the advert when we’ve found the right candidate.

As an applicant or employee, you may request reasonable work and position accommodation or adjustments via accommodation@orsted.com.